./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1635058372 <...> DUID 00:04:7c:7c:42:18:3f:30:8d:b4:e2:57:c6:a5:0a:a4:65:8b forked to background, child pid 4657 [ 39.377548][ T4658] 8021q: adding VLAN 0 to HW filter on device bond0 [ 39.412605][ T4658] eql: remember to turn off Van-Jacobson compression on your slave devices Starting sshd: OK syzkaller Warning: Permanently added '10.128.1.73' (ECDSA) to the list of known hosts. execve("./syz-executor1635058372", ["./syz-executor1635058372"], 0x7ffd67efd210 /* 10 vars */) = 0 brk(NULL) = 0x55555678a000 brk(0x55555678ac40) = 0x55555678ac40 arch_prctl(ARCH_SET_FS, 0x55555678a300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor1635058372", 4096) = 28 brk(0x5555567abc40) = 0x5555567abc40 brk(0x5555567ac000) = 0x5555567ac000 mprotect(0x7f79a177a000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555678a5d0) = 4993 ./strace-static-x86_64: Process 4993 attached [pid 4992] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4993] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4992] <... clone resumed>, child_tidptr=0x55555678a5d0) = 4994 [pid 4992] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555678a5d0) = 4995 [pid 4992] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4993] <... clone resumed>, child_tidptr=0x55555678a5d0) = 4996 ./strace-static-x86_64: Process 4994 attached [pid 4992] <... clone resumed>, child_tidptr=0x55555678a5d0) = 4997 [pid 4992] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4994] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 4995 attached [pid 4992] <... clone resumed>, child_tidptr=0x55555678a5d0) = 4998 [pid 4992] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 4996 attached , child_tidptr=0x55555678a5d0) = 4999 [pid 4996] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 4996] setpgid(0, 0) = 0 [pid 4996] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 4996] write(3, "1000", 4./strace-static-x86_64: Process 4997 attached ) = 4 [pid 4996] close(3 [pid 4997] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4996] <... close resumed>) = 0 [pid 4996] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE) = 3 ./strace-static-x86_64: Process 4998 attached [pid 4995] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4998] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4996] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 4994] <... clone resumed>, child_tidptr=0x55555678a5d0) = 5001 ./strace-static-x86_64: Process 5002 attached ./strace-static-x86_64: Process 5001 attached ./strace-static-x86_64: Process 4999 attached [pid 4995] <... clone resumed>, child_tidptr=0x55555678a5d0) = 5002 [pid 4997] <... clone resumed>, child_tidptr=0x55555678a5d0) = 5003 [pid 4999] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 4998] <... clone resumed>, child_tidptr=0x55555678a5d0) = 5000 [pid 5002] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5002] setpgid(0, 0) = 0 [pid 5002] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5001] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 4999] <... clone resumed>, child_tidptr=0x55555678a5d0) = 5004 [pid 5002] <... openat resumed>) = 3 [pid 5001] <... prctl resumed>) = 0 ./strace-static-x86_64: Process 5000 attached [pid 5002] write(3, "1000", 4 [pid 5001] setpgid(0, 0) = 0 [pid 5002] <... write resumed>) = 4 ./strace-static-x86_64: Process 5003 attached [pid 5002] close(3 [pid 5001] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5000] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5002] <... close resumed>) = 0 [pid 5001] <... openat resumed>) = 3 [pid 5000] <... prctl resumed>) = 0 [pid 5003] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5002] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE [pid 5001] write(3, "1000", 4./strace-static-x86_64: Process 5004 attached [pid 5003] <... prctl resumed>) = 0 [pid 5002] <... openat resumed>) = 3 [pid 5000] setpgid(0, 0 [pid 5001] <... write resumed>) = 4 [pid 5003] setpgid(0, 0 [pid 5002] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 5003] <... setpgid resumed>) = 0 [pid 5001] close(3 [pid 5000] <... setpgid resumed>) = 0 [pid 5003] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5001] <... close resumed>) = 0 [pid 5000] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5001] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE [pid 5003] <... openat resumed>) = 3 [pid 5000] <... openat resumed>) = 3 [pid 5004] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5003] write(3, "1000", 4 [pid 5001] <... openat resumed>) = 3 [pid 5000] write(3, "1000", 4 [pid 5004] <... prctl resumed>) = 0 [pid 5003] <... write resumed>) = 4 [pid 5001] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 5000] <... write resumed>) = 4 [pid 5004] setpgid(0, 0 [pid 5003] close(3 [pid 5000] close(3 [pid 5004] <... setpgid resumed>) = 0 [pid 5003] <... close resumed>) = 0 [pid 5000] <... close resumed>) = 0 [pid 5004] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5003] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE [pid 5000] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE [pid 5004] <... openat resumed>) = 3 [pid 5003] <... openat resumed>) = 3 [pid 5000] <... openat resumed>) = 3 [pid 5004] write(3, "1000", 4 [pid 5003] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 5000] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 5004] <... write resumed>) = 4 [pid 5004] close(3) = 0 [pid 5004] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE) = 3 [pid 5004] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 4993] kill(-4996, SIGKILL) = 0 [pid 4993] kill(4996, SIGKILL) = 0 [pid 4994] kill(-5001, SIGKILL) = 0 [pid 4994] kill(5001, SIGKILL [pid 4997] kill(-5003, SIGKILL [pid 4994] <... kill resumed>) = 0 [pid 4998] kill(-5000, SIGKILL [pid 4997] <... kill resumed>) = 0 [pid 4995] kill(-5002, SIGKILL [pid 4998] <... kill resumed>) = 0 [pid 4995] <... kill resumed>) = 0 [pid 4997] kill(5003, SIGKILL [pid 4998] kill(5000, SIGKILL [pid 4997] <... kill resumed>) = 0 [pid 4995] kill(5002, SIGKILL [pid 4999] kill(-5004, SIGKILL [pid 4998] <... kill resumed>) = 0 [pid 4995] <... kill resumed>) = 0 [pid 4999] <... kill resumed>) = 0 [pid 4999] kill(5004, SIGKILL) = 0 [pid 4993] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4999] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 4999] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 4998] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 4998] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 4998] getdents64(3, 0x55555678b620 /* 2 entries */, 32768) = 48 [pid 4995] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4998] getdents64(3, [pid 4995] <... openat resumed>) = 3 [pid 4998] <... getdents64 resumed>0x55555678b620 /* 0 entries */, 32768) = 0 [pid 4995] fstat(3, [pid 4998] close(3 [pid 4995] <... fstat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 4999] getdents64(3, [pid 4998] <... close resumed>) = 0 [pid 4995] getdents64(3, [pid 4993] <... openat resumed>) = 3 [pid 4999] <... getdents64 resumed>0x55555678b620 /* 2 entries */, 32768) = 48 [pid 4997] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4995] <... getdents64 resumed>0x55555678b620 /* 2 entries */, 32768) = 48 [pid 4999] getdents64(3, [pid 4997] <... openat resumed>) = 3 [pid 4995] getdents64(3, [pid 4999] <... getdents64 resumed>0x55555678b620 /* 0 entries */, 32768) = 0 [pid 4997] fstat(3, [pid 4995] <... getdents64 resumed>0x55555678b620 /* 0 entries */, 32768) = 0 [pid 4999] close(3 [pid 4997] <... fstat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 4995] close(3 [pid 4999] <... close resumed>) = 0 [pid 4997] getdents64(3, [pid 4995] <... close resumed>) = 0 [pid 4993] fstat(3, [pid 4997] <... getdents64 resumed>0x55555678b620 /* 2 entries */, 32768) = 48 [pid 4997] getdents64(3, [pid 4993] <... fstat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 4997] <... getdents64 resumed>0x55555678b620 /* 0 entries */, 32768) = 0 [pid 4997] close(3 [pid 4993] getdents64(3, [pid 4997] <... close resumed>) = 0 [pid 4994] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 4993] <... getdents64 resumed>0x55555678b620 /* 2 entries */, 32768) = 48 [pid 4994] <... openat resumed>) = 3 [pid 4993] getdents64(3, [pid 4994] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 4993] <... getdents64 resumed>0x55555678b620 /* 0 entries */, 32768) = 0 [pid 4994] getdents64(3, [pid 4993] close(3 [pid 4994] <... getdents64 resumed>0x55555678b620 /* 2 entries */, 32768) = 48 [pid 4994] getdents64(3, [pid 4993] <... close resumed>) = 0 [pid 4994] <... getdents64 resumed>0x55555678b620 /* 0 entries */, 32768) = 0 [pid 4994] close(3) = 0 syzkaller login: [ 81.672697][ T1872] cfg80211: failed to load regulatory.db [pid 4996] <... fallocate resumed>) = ? [pid 4996] +++ killed by SIGKILL +++ [pid 4993] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=4996, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=6133 /* 61.33 s */} --- [pid 4993] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5022 attached , child_tidptr=0x55555678a5d0) = 5022 [pid 5022] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5022] setpgid(0, 0) = 0 [pid 5022] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5022] write(3, "1000", 4) = 4 [pid 5022] close(3) = 0 [pid 5022] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE) = 3 [pid 5022] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 4993] kill(-5022, SIGKILL) = 0 [pid 4993] kill(5022, SIGKILL) = 0 [pid 4993] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 4993] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 4993] getdents64(3, 0x55555678b620 /* 2 entries */, 32768) = 48 [pid 4993] getdents64(3, 0x55555678b620 /* 0 entries */, 32768) = 0 [pid 4993] close(3) = 0 [pid 5002] <... fallocate resumed>) = ? [pid 5002] +++ killed by SIGKILL +++ [pid 4995] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5002, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=6070 /* 60.70 s */} --- [pid 4995] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5029 attached , child_tidptr=0x55555678a5d0) = 5029 [pid 5029] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5029] setpgid(0, 0) = 0 [pid 5029] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5029] write(3, "1000", 4) = 4 [pid 5029] close(3) = 0 [pid 5029] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_APPEND|O_LARGEFILE) = 3 [pid 5029] fallocate(3, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 1099511627778 [pid 4995] kill(-5029, SIGKILL) = 0 [pid 4995] kill(5029, SIGKILL) = 0 [pid 4995] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 4995] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 4995] getdents64(3, 0x55555678b620 /* 2 entries */, 32768) = 48 [pid 4995] getdents64(3, 0x55555678b620 /* 0 entries */, 32768) = 0 [pid 4995] close(3) = 0 [ 286.449489][ T29] INFO: task syz-executor163:5000 blocked for more than 143 seconds. [ 286.458142][ T29] Not tainted 6.3.0-syzkaller-12049-g58390c8ce1bd #0 [ 286.466451][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.476175][ T29] task:syz-executor163 state:D stack:27304 pid:5000 ppid:4998 flags:0x00004004 [ 286.486701][ T29] Call Trace: [ 286.494233][ T29] [ 286.501231][ T29] __schedule+0x187b/0x4900 [ 286.505832][ T29] ? read_lock_is_recursive+0x20/0x20 [ 286.514932][ T29] ? release_firmware_map_entry+0x190/0x190 [ 286.522034][ T29] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 286.529012][ T29] ? print_irqtrace_events+0x220/0x220 [ 286.534572][ T29] ? _raw_spin_lock_irq+0xdf/0x120 [ 286.540719][ T29] schedule+0xc3/0x180 [ 286.545900][ T29] schedule_preempt_disabled+0x13/0x20 [ 286.552378][ T29] rwsem_down_write_slowpath+0xedd/0x13a0 [ 286.558186][ T29] ? rwsem_down_read_slowpath+0x950/0x950 [ 286.568719][ T29] ? read_lock_is_recursive+0x20/0x20 [ 286.578708][ T29] __down_write_common+0x1aa/0x200 [ 286.584867][ T29] ? clear_nonspinnable+0x60/0x60 [ 286.590937][ T29] blkdev_fallocate+0x21b/0x3a0 [ 286.596765][ T29] vfs_fallocate+0x54b/0x6b0 [ 286.601477][ T29] __x64_sys_fallocate+0xbd/0x100 [ 286.606547][ T29] do_syscall_64+0x41/0xc0 [ 286.612109][ T29] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 286.618996][ T29] RIP: 0033:0x7f79a170de09 [ 286.623513][ T29] RSP: 002b:00007ffc6ffd60b8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.632128][ T29] RAX: ffffffffffffffda RBX: 00000000000f4240 RCX: 00007f79a170de09 [ 286.642735][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000003 [ 286.650827][ T29] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 286.665076][ T29] R10: 0000010000000002 R11: 0000000000000246 R12: 00007f79a16d15e0 [ 286.674125][ T29] R13: 0000000000000000 R14: 00007ffc6ffd60e0 R15: 00007ffc6ffd60d0 [ 286.683255][ T29] [ 286.687294][ T29] INFO: task syz-executor163:5003 blocked for more than 143 seconds. [ 286.695476][ T29] Not tainted 6.3.0-syzkaller-12049-g58390c8ce1bd #0 [ 286.709432][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.719235][ T29] task:syz-executor163 state:D stack:25536 pid:5003 ppid:4997 flags:0x00004004 [ 286.735941][ T29] Call Trace: [ 286.740924][ T29] [ 286.743910][ T29] __schedule+0x187b/0x4900 [ 286.748475][ T29] ? read_lock_is_recursive+0x20/0x20 [ 286.762134][ T29] ? release_firmware_map_entry+0x190/0x190 [ 286.768109][ T29] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 286.774183][ T29] ? print_irqtrace_events+0x220/0x220 [ 286.779748][ T29] ? _raw_spin_lock_irq+0xdf/0x120 [ 286.785412][ T29] schedule+0xc3/0x180 [ 286.789587][ T29] schedule_preempt_disabled+0x13/0x20 [ 286.795109][ T29] rwsem_down_write_slowpath+0xedd/0x13a0 [ 286.805205][ T29] ? rwsem_down_read_slowpath+0x950/0x950 [ 286.816064][ T29] ? read_lock_is_recursive+0x20/0x20 [ 286.826824][ T29] __down_write_common+0x1aa/0x200 [ 286.833167][ T29] ? clear_nonspinnable+0x60/0x60 [ 286.838271][ T29] blkdev_fallocate+0x21b/0x3a0 [ 286.847377][ T29] vfs_fallocate+0x54b/0x6b0 [ 286.854336][ T29] __x64_sys_fallocate+0xbd/0x100 [ 286.859499][ T29] do_syscall_64+0x41/0xc0 [ 286.863970][ T29] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 286.869951][ T29] RIP: 0033:0x7f79a170de09 [ 286.874400][ T29] RSP: 002b:00007ffc6ffd60b8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.883310][ T29] RAX: ffffffffffffffda RBX: 00000000000f4240 RCX: 00007f79a170de09 [ 286.891772][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000003 [ 286.900266][ T29] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 286.908629][ T29] R10: 0000010000000002 R11: 0000000000000246 R12: 00007f79a16d15e0 [ 286.917056][ T29] R13: 0000000000000000 R14: 00007ffc6ffd60e0 R15: 00007ffc6ffd60d0 [ 286.925626][ T29] [ 286.929092][ T29] INFO: task syz-executor163:5004 blocked for more than 143 seconds. [ 286.937743][ T29] Not tainted 6.3.0-syzkaller-12049-g58390c8ce1bd #0 [ 286.945049][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.954428][ T29] task:syz-executor163 state:D stack:27304 pid:5004 ppid:4999 flags:0x00004004 [ 286.964169][ T29] Call Trace: [ 286.967876][ T29] [ 286.971287][ T29] __schedule+0x187b/0x4900 [ 286.976268][ T29] ? read_lock_is_recursive+0x20/0x20 [ 286.982314][ T29] ? release_firmware_map_entry+0x190/0x190 [ 286.988665][ T29] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 286.995140][ T29] ? print_irqtrace_events+0x220/0x220 [ 287.000711][ T29] ? _raw_spin_lock_irq+0xdf/0x120 [ 287.005904][ T29] schedule+0xc3/0x180 [ 287.010069][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.016004][ T29] rwsem_down_write_slowpath+0xedd/0x13a0 [ 287.022288][ T29] ? rwsem_down_read_slowpath+0x950/0x950 [ 287.028568][ T29] ? read_lock_is_recursive+0x20/0x20 [ 287.034463][ T29] __down_write_common+0x1aa/0x200 [ 287.040231][ T29] ? clear_nonspinnable+0x60/0x60 [ 287.045694][ T29] blkdev_fallocate+0x21b/0x3a0 [ 287.051031][ T29] vfs_fallocate+0x54b/0x6b0 [ 287.056069][ T29] __x64_sys_fallocate+0xbd/0x100 [ 287.061468][ T29] do_syscall_64+0x41/0xc0 [ 287.065936][ T29] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 287.072303][ T29] RIP: 0033:0x7f79a170de09 [ 287.077130][ T29] RSP: 002b:00007ffc6ffd60b8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.086184][ T29] RAX: ffffffffffffffda RBX: 00000000000f4240 RCX: 00007f79a170de09 [ 287.094701][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000003 [ 287.103121][ T29] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000000000001 [ 287.111643][ T29] R10: 0000010000000002 R11: 0000000000000246 R12: 00007f79a16d15e0 [ 287.120153][ T29] R13: 0000000000000000 R14: 00007ffc6ffd60e0 R15: 00007ffc6ffd60d0 [ 287.128666][ T29] [ 287.131803][ T29] [ 287.131803][ T29] Showing all locks held in the system: [ 287.139622][ T29] 1 lock held by rcu_tasks_kthre/13: [ 287.145293][ T29] #0: ffffffff8cf277b0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xd20 [ 287.156284][ T29] 1 lock held by rcu_tasks_trace/14: [ 287.162076][ T29] #0: ffffffff8cf27b70 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xd20 [ 287.173844][ T29] 1 lock held by khungtaskd/29: [ 287.179062][ T29] #0: ffffffff8cf275e0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x0/0x30 [ 287.188984][ T29] 1 lock held by klogd/4433: [ 287.194072][ T29] 2 locks held by getty/4745: [ 287.199234][ T29] #0: ffff888028bfc098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 287.209131][ T29] #1: ffffc900015802f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6ab/0x1db0 [ 287.219773][ T29] 1 lock held by syz-executor163/5000: [ 287.225691][ T29] #0: ffff88801dd813b0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x21b/0x3a0 [ 287.236866][ T29] 2 locks held by syz-executor163/5001: [ 287.242938][ T29] 1 lock held by syz-executor163/5003: [ 287.248821][ T29] #0: ffff88801dd813b0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x21b/0x3a0 [ 287.260084][ T29] 1 lock held by syz-executor163/5004: [ 287.265958][ T29] #0: ffff88801dd813b0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x21b/0x3a0 [ 287.277097][ T29] 1 lock held by syz-executor163/5022: [ 287.282827][ T29] #0: ffff88801dd813b0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x21b/0x3a0 [ 287.293710][ T29] 1 lock held by syz-executor163/5029: [ 287.299205][ T29] #0: ffff88801dd813b0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x21b/0x3a0 [ 287.310476][ T29] [ 287.313211][ T29] ============================================= [ 287.313211][ T29] [ 287.322169][ T29] NMI backtrace for cpu 0 [ 287.326531][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.3.0-syzkaller-12049-g58390c8ce1bd #0 [ 287.336014][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 287.346092][ T29] Call Trace: [ 287.349408][ T29] [ 287.352340][ T29] dump_stack_lvl+0x1e7/0x2d0 [ 287.357030][ T29] ? nf_tcp_handle_invalid+0x650/0x650 [ 287.362520][ T29] ? panic+0x770/0x770 [ 287.366618][ T29] nmi_cpu_backtrace+0x498/0x4d0 [ 287.371593][ T29] ? vprintk_emit+0x10d/0x1f0 [ 287.376297][ T29] ? nmi_trigger_cpumask_backtrace+0x300/0x300 [ 287.382468][ T29] ? _printk+0xd5/0x120 [ 287.386635][ T29] ? panic+0x770/0x770 [ 287.390710][ T29] ? __wake_up_klogd+0xcc/0x100 [ 287.395583][ T29] ? panic+0x770/0x770 [ 287.399687][ T29] ? __rcu_read_unlock+0x96/0x100 [ 287.404735][ T29] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 287.410806][ T29] nmi_trigger_cpumask_backtrace+0x187/0x300 [ 287.416894][ T29] watchdog+0xec2/0xf00 [ 287.421071][ T29] kthread+0x2b8/0x350 [ 287.425150][ T29] ? hungtask_pm_notify+0x90/0x90 [ 287.430188][ T29] ? kthread_blkcg+0xd0/0xd0 [ 287.434825][ T29] ret_from_fork+0x1f/0x30 [ 287.439268][ T29] [ 287.442767][ T29] Sending NMI from CPU 0 to CPUs 1: [ 287.448015][ C1] NMI backtrace for cpu 1 [ 287.448027][ C1] CPU: 1 PID: 10 Comm: kworker/u4:0 Not tainted 6.3.0-syzkaller-12049-g58390c8ce1bd #0 [ 287.448046][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 287.448056][ C1] Workqueue: events_unbound toggle_allocation_gate [ 287.448079][ C1] RIP: 0010:jump_label_update+0x96/0x410 [ 287.448104][ C1] Code: 03 00 00 8b 1d 6b 94 9b 0c bf 03 00 00 00 89 de e8 3f b0 d1 ff 83 fb 03 41 0f 92 c5 bf 01 00 00 00 e8 6e 2d a5 ff 48 8b 3c 24 05 f3 bd ff 48 85 c0 0f 84 06 02 00 00 48 89 c3 e8 64 ac d1 ff [ 287.448118][ C1] RSP: 0018:ffffc900000f7b08 EFLAGS: 00000246 [ 287.448132][ C1] RAX: 1ffff1100294d64f RBX: 0000000000000003 RCX: ffffffff8ab90a00 [ 287.448148][ C1] RDX: ffff888014a69dc0 RSI: 0000000000000003 RDI: ffffffff91b849e0 [ 287.448160][ C1] RBP: 0000000000000001 R08: ffffffff81ba02e1 R09: fffffbfff237093d [ 287.448171][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: ffffffff91b849e8 [ 287.448183][ C1] R13: ffff888014255b00 R14: dffffc0000000000 R15: 1ffffffff237093d [ 287.448196][ C1] FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 287.448210][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.448222][ C1] CR2: 00007ffc6ffd5f58 CR3: 000000000cd30000 CR4: 00000000003506e0 [ 287.448236][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.448246][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.448256][ C1] Call Trace: [ 287.448261][ C1] [ 287.448270][ C1] static_key_disable_cpuslocked+0xce/0x1b0 [ 287.448296][ C1] static_key_disable+0x1a/0x20 [ 287.448318][ C1] toggle_allocation_gate+0x1b8/0x250 [ 287.448336][ C1] ? show_object+0xa0/0xa0 [ 287.448353][ C1] ? print_irqtrace_events+0x220/0x220 [ 287.448375][ C1] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 287.448402][ C1] process_one_work+0x8a0/0x10e0 [ 287.448443][ C1] ? worker_detach_from_pool+0x290/0x290 [ 287.448471][ C1] ? _raw_spin_lock_irqsave+0x120/0x120 [ 287.448487][ C1] ? kthread_data+0x52/0xc0 [ 287.448510][ C1] ? wq_worker_running+0x9b/0x1a0 [ 287.448532][ C1] worker_thread+0xa63/0x1210 [ 287.448572][ C1] kthread+0x2b8/0x350 [ 287.448592][ C1] ? pr_cont_work+0x5e0/0x5e0 [ 287.448615][ C1] ? kthread_blkcg+0xd0/0xd0 [ 287.448637][ C1] ret_from_fork+0x1f/0x30 [ 287.448668][ C1] [ 287.449553][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 287.449567][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.3.0-syzkaller-12049-g58390c8ce1bd #0 [ 287.449589][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 04/14/2023 [ 287.449600][ T29] Call Trace: [ 287.449607][ T29] [ 287.449615][ T29] dump_stack_lvl+0x1e7/0x2d0 [ 287.449654][ T29] ? nf_tcp_handle_invalid+0x650/0x650 [ 287.449699][ T29] ? panic+0x770/0x770 [ 287.449729][ T29] ? vscnprintf+0x5d/0x80 [ 287.449758][ T29] panic+0x30f/0x770 [ 287.449786][ T29] ? nmi_trigger_cpumask_backtrace+0x233/0x300 [ 287.449810][ T29] ? __memcpy_flushcache+0x2b0/0x2b0 [ 287.449833][ T29] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 287.449861][ T29] ? nmi_trigger_cpumask_backtrace+0x233/0x300 [ 287.449882][ T29] ? nmi_trigger_cpumask_backtrace+0x2b4/0x300 [ 287.449905][ T29] ? nmi_trigger_cpumask_backtrace+0x2b9/0x300 [ 287.449930][ T29] watchdog+0xf00/0xf00 [ 287.449972][ T29] kthread+0x2b8/0x350 [ 287.449997][ T29] ? hungtask_pm_notify+0x90/0x90 [ 287.450026][ T29] ? kthread_blkcg+0xd0/0xd0 [ 287.450054][ T29] ret_from_fork+0x1f/0x30 [ 287.450096][ T29] [ 287.453974][ T29] Kernel Offset: disabled [ 287.800239][ T29] Rebooting in 86400 seconds..