./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor686363928 <...> Warning: Permanently added '10.128.0.183' (ED25519) to the list of known hosts. execve("./syz-executor686363928", ["./syz-executor686363928"], 0x7ffcb7dc3200 /* 10 vars */) = 0 brk(NULL) = 0x55555745e000 brk(0x55555745ed00) = 0x55555745ed00 arch_prctl(ARCH_SET_FS, 0x55555745e380) = 0 set_tid_address(0x55555745e650) = 5054 set_robust_list(0x55555745e660, 24) = 0 rseq(0x55555745eca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor686363928", 4096) = 27 getrandom("\x3b\x6b\x3c\xa2\xdf\x4c\x8b\x8e", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55555745ed00 brk(0x55555747fd00) = 0x55555747fd00 brk(0x555557480000) = 0x555557480000 mprotect(0x7f8956ed6000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5055 attached [pid 5055] set_robust_list(0x55555745e660, 24 [pid 5054] <... clone resumed>, child_tidptr=0x55555745e650) = 5055 [pid 5055] <... set_robust_list resumed>) = 0 [pid 5055] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5056 attached [pid 5054] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5056] set_robust_list(0x55555745e660, 24 [pid 5055] <... clone resumed>, child_tidptr=0x55555745e650) = 5056 [pid 5056] <... set_robust_list resumed>) = 0 [pid 5056] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5057 attached ) = 0 [pid 5057] set_robust_list(0x55555745e660, 24 [pid 5056] setpgid(0, 0 [pid 5057] <... set_robust_list resumed>) = 0 [pid 5056] <... setpgid resumed>) = 0 [pid 5054] <... clone resumed>, child_tidptr=0x55555745e650) = 5057 [pid 5057] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5054] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5056] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5054] <... clone resumed>, child_tidptr=0x55555745e650) = 5058 ./strace-static-x86_64: Process 5059 attached ./strace-static-x86_64: Process 5058 attached [pid 5057] <... clone resumed>, child_tidptr=0x55555745e650) = 5059 [pid 5056] <... openat resumed>) = 3 [pid 5054] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5059] set_robust_list(0x55555745e660, 24 [pid 5058] set_robust_list(0x55555745e660, 24 [pid 5056] write(3, "1000", 4) = 4 [pid 5056] close(3) = 0 [pid 5056] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC./strace-static-x86_64: Process 5060 attached [pid 5059] <... set_robust_list resumed>) = 0 [pid 5058] <... set_robust_list resumed>) = 0 [pid 5059] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5054] <... clone resumed>, child_tidptr=0x55555745e650) = 5060 [pid 5060] set_robust_list(0x55555745e660, 24 [pid 5059] <... prctl resumed>) = 0 [pid 5058] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5056] <... openat resumed>) = 3 [pid 5054] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5060] <... set_robust_list resumed>) = 0 [pid 5059] setpgid(0, 0 [pid 5060] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5059] <... setpgid resumed>) = 0 [pid 5056] ioctl(3, BLKZEROOUT, [0, 137438955520]./strace-static-x86_64: Process 5061 attached [pid 5061] set_robust_list(0x55555745e660, 24 [pid 5059] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5062 attached [pid 5061] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5063 attached [pid 5054] <... clone resumed>, child_tidptr=0x55555745e650) = 5062 [pid 5062] set_robust_list(0x55555745e660, 24 [pid 5061] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5060] <... clone resumed>, child_tidptr=0x55555745e650) = 5063 [pid 5059] <... openat resumed>) = 3 [pid 5058] <... clone resumed>, child_tidptr=0x55555745e650) = 5061 [pid 5063] set_robust_list(0x55555745e660, 24 [pid 5062] <... set_robust_list resumed>) = 0 [pid 5061] <... prctl resumed>) = 0 [pid 5059] write(3, "1000", 4 [pid 5054] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5063] <... set_robust_list resumed>) = 0 [pid 5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5061] setpgid(0, 0 [pid 5059] <... write resumed>) = 4 [pid 5063] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5061] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 5065 attached ./strace-static-x86_64: Process 5064 attached [pid 5063] <... prctl resumed>) = 0 [pid 5061] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5059] close(3) = 0 [pid 5054] <... clone resumed>, child_tidptr=0x55555745e650) = 5065 [pid 5065] set_robust_list(0x55555745e660, 24 [pid 5064] set_robust_list(0x55555745e660, 24 [pid 5063] setpgid(0, 0 [pid 5062] <... clone resumed>, child_tidptr=0x55555745e650) = 5064 [pid 5059] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC [pid 5065] <... set_robust_list resumed>) = 0 [pid 5064] <... set_robust_list resumed>) = 0 [pid 5063] <... setpgid resumed>) = 0 [pid 5061] <... openat resumed>) = 3 [pid 5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5064] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5063] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5061] write(3, "1000", 4 [pid 5059] <... openat resumed>) = 3 [pid 5064] <... prctl resumed>) = 0 [pid 5063] <... openat resumed>) = 3 [pid 5059] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5064] setpgid(0, 0 [pid 5063] write(3, "1000", 4 [pid 5061] <... write resumed>) = 4 [pid 5064] <... setpgid resumed>) = 0 [pid 5063] <... write resumed>) = 4 [pid 5061] close(3 [pid 5063] close(3./strace-static-x86_64: Process 5066 attached [pid 5065] <... clone resumed>, child_tidptr=0x55555745e650) = 5066 [pid 5064] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5061] <... close resumed>) = 0 [pid 5066] set_robust_list(0x55555745e660, 24 [pid 5064] <... openat resumed>) = 3 [pid 5063] <... close resumed>) = 0 [pid 5061] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC [pid 5066] <... set_robust_list resumed>) = 0 [pid 5063] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC [pid 5061] <... openat resumed>) = 3 [pid 5066] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5064] write(3, "1000", 4 [pid 5066] <... prctl resumed>) = 0 [pid 5064] <... write resumed>) = 4 [pid 5063] <... openat resumed>) = 3 [pid 5061] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5066] setpgid(0, 0 [pid 5064] close(3 [pid 5063] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5066] <... setpgid resumed>) = 0 [pid 5064] <... close resumed>) = 0 [pid 5066] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5064] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5066] <... openat resumed>) = 3 [pid 5064] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5066] write(3, "1000", 4) = 4 [pid 5066] close(3) = 0 [pid 5066] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5066] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5055] kill(-5056, SIGKILL) = 0 [pid 5055] kill(5056, SIGKILL) = 0 [pid 5057] kill(-5059, SIGKILL) = 0 [pid 5057] kill(5059, SIGKILL) = 0 [pid 5062] kill(-5064, SIGKILL [pid 5060] kill(-5063, SIGKILL [pid 5062] <... kill resumed>) = 0 [pid 5060] <... kill resumed>) = 0 [pid 5062] kill(5064, SIGKILL [pid 5060] kill(5063, SIGKILL [pid 5062] <... kill resumed>) = 0 [pid 5060] <... kill resumed>) = 0 [pid 5058] kill(-5061, SIGKILL) = 0 [pid 5058] kill(5061, SIGKILL) = 0 [pid 5065] kill(-5066, SIGKILL) = 0 [pid 5065] kill(5066, SIGKILL) = 0 [pid 5055] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5062] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5055] newfstatat(3, "", [pid 5062] <... openat resumed>) = 3 [pid 5055] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5055] getdents64(3, [pid 5062] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5058] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5055] <... getdents64 resumed>0x55555745f6f0 /* 2 entries */, 32768) = 48 [pid 5062] getdents64(3, [pid 5058] <... openat resumed>) = 3 [pid 5058] newfstatat(3, "", [pid 5062] <... getdents64 resumed>0x55555745f6f0 /* 2 entries */, 32768) = 48 [pid 5058] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5062] getdents64(3, [pid 5058] getdents64(3, [pid 5055] getdents64(3, [pid 5062] <... getdents64 resumed>0x55555745f6f0 /* 0 entries */, 32768) = 0 [pid 5060] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5058] <... getdents64 resumed>0x55555745f6f0 /* 2 entries */, 32768) = 48 [pid 5055] <... getdents64 resumed>0x55555745f6f0 /* 0 entries */, 32768) = 0 [pid 5062] close(3 [pid 5060] <... openat resumed>) = 3 [pid 5058] getdents64(3, [pid 5062] <... close resumed>) = 0 [pid 5060] newfstatat(3, "", [pid 5058] <... getdents64 resumed>0x55555745f6f0 /* 0 entries */, 32768) = 0 [pid 5057] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5055] close(3 [pid 5060] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5058] close(3 [pid 5057] <... openat resumed>) = 3 [pid 5055] <... close resumed>) = 0 [pid 5060] getdents64(3, [pid 5058] <... close resumed>) = 0 [pid 5065] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5060] <... getdents64 resumed>0x55555745f6f0 /* 2 entries */, 32768) = 48 [pid 5057] newfstatat(3, "", [pid 5065] <... openat resumed>) = 3 [pid 5060] getdents64(3, 0x55555745f6f0 /* 0 entries */, 32768) = 0 [pid 5057] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5065] newfstatat(3, "", [pid 5060] close(3 [pid 5057] getdents64(3, [pid 5065] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5060] <... close resumed>) = 0 [pid 5065] getdents64(3, [pid 5057] <... getdents64 resumed>0x55555745f6f0 /* 2 entries */, 32768) = 48 [pid 5057] getdents64(3, 0x55555745f6f0 /* 0 entries */, 32768) = 0 [pid 5057] close(3 [pid 5065] <... getdents64 resumed>0x55555745f6f0 /* 2 entries */, 32768) = 48 [pid 5057] <... close resumed>) = 0 [pid 5065] getdents64(3, 0x55555745f6f0 /* 0 entries */, 32768) = 0 [pid 5065] close(3) = 0 [ 76.150830][ T778] cfg80211: failed to load regulatory.db [pid 5056] <... ioctl resumed>) = ? [pid 5056] +++ killed by SIGKILL +++ [pid 5055] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5056, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=2872 /* 28.72 s */} --- [pid 5055] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5069 attached [pid 5069] set_robust_list(0x55555745e660, 24 [pid 5055] <... clone resumed>, child_tidptr=0x55555745e650) = 5069 [pid 5069] <... set_robust_list resumed>) = 0 [pid 5069] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5069] setpgid(0, 0) = 0 [pid 5069] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5069] write(3, "1000", 4) = 4 [pid 5069] close(3) = 0 [pid 5069] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5069] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5055] kill(-5069, SIGKILL) = 0 [pid 5055] kill(5069, SIGKILL) = 0 [pid 5055] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5055] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5055] getdents64(3, 0x55555745f6f0 /* 2 entries */, 32768) = 48 [pid 5055] getdents64(3, 0x55555745f6f0 /* 0 entries */, 32768) = 0 [pid 5055] close(3) = 0 [pid 5059] <... ioctl resumed>) = ? [pid 5059] +++ killed by SIGKILL +++ [pid 5057] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5059, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=2833 /* 28.33 s */} --- [pid 5057] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5080 attached [pid 5080] set_robust_list(0x55555745e660, 24 [pid 5057] <... clone resumed>, child_tidptr=0x55555745e650) = 5080 [pid 5080] <... set_robust_list resumed>) = 0 [pid 5080] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5080] setpgid(0, 0) = 0 [pid 5080] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5080] write(3, "1000", 4) = 4 [pid 5080] close(3) = 0 [pid 5080] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5080] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5057] kill(-5080, SIGKILL) = 0 [pid 5057] kill(5080, SIGKILL) = 0 [pid 5057] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5057] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5057] getdents64(3, 0x55555745f6f0 /* 2 entries */, 32768) = 48 [pid 5057] getdents64(3, 0x55555745f6f0 /* 0 entries */, 32768) = 0 [pid 5057] close(3) = 0 [pid 5061] <... ioctl resumed>) = ? [pid 5061] +++ killed by SIGKILL +++ [pid 5058] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5061, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=2804 /* 28.04 s */} --- [pid 5058] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5081 attached , child_tidptr=0x55555745e650) = 5081 [pid 5081] set_robust_list(0x55555745e660, 24) = 0 [pid 5081] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5081] setpgid(0, 0) = 0 [pid 5081] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5081] write(3, "1000", 4) = 4 [pid 5081] close(3) = 0 [pid 5081] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5081] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5058] kill(-5081, SIGKILL) = 0 [pid 5058] kill(5081, SIGKILL) = 0 [pid 5058] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5058] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5058] getdents64(3, 0x55555745f6f0 /* 2 entries */, 32768) = 48 [pid 5058] getdents64(3, 0x55555745f6f0 /* 0 entries */, 32768) = 0 [pid 5058] close(3) = 0 [pid 5063] <... ioctl resumed>) = ? [pid 5063] +++ killed by SIGKILL +++ [pid 5060] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5063, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=2839 /* 28.39 s */} --- [pid 5060] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5082 attached , child_tidptr=0x55555745e650) = 5082 [pid 5082] set_robust_list(0x55555745e660, 24) = 0 [pid 5082] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5082] setpgid(0, 0) = 0 [pid 5082] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5082] write(3, "1000", 4) = 4 [pid 5082] close(3) = 0 [pid 5082] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5082] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5060] kill(-5082, SIGKILL) = 0 [pid 5060] kill(5082, SIGKILL) = 0 [pid 5060] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5060] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5060] getdents64(3, 0x55555745f6f0 /* 2 entries */, 32768) = 48 [pid 5060] getdents64(3, 0x55555745f6f0 /* 0 entries */, 32768) = 0 [pid 5060] close(3) = 0 [pid 5064] <... ioctl resumed>) = ? [pid 5064] +++ killed by SIGKILL +++ [pid 5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5064, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=2914 /* 29.14 s */} --- [pid 5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5089 attached [pid 5089] set_robust_list(0x55555745e660, 24) = 0 [pid 5089] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5062] <... clone resumed>, child_tidptr=0x55555745e650) = 5089 [pid 5089] <... prctl resumed>) = 0 [pid 5089] setpgid(0, 0) = 0 [pid 5089] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5089] write(3, "1000", 4) = 4 [pid 5089] close(3) = 0 [pid 5089] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5089] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5062] kill(-5089, SIGKILL) = 0 [pid 5062] kill(5089, SIGKILL) = 0 [pid 5062] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5062] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5062] getdents64(3, 0x55555745f6f0 /* 2 entries */, 32768) = 48 [pid 5062] getdents64(3, 0x55555745f6f0 /* 0 entries */, 32768) = 0 [pid 5062] close(3) = 0 [pid 5066] <... ioctl resumed>) = ? [pid 5066] +++ killed by SIGKILL +++ [pid 5065] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5066, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=2836 /* 28.36 s */} --- [pid 5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5090 attached , child_tidptr=0x55555745e650) = 5090 [pid 5090] set_robust_list(0x55555745e660, 24) = 0 [pid 5090] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5090] setpgid(0, 0) = 0 [pid 5090] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5090] write(3, "1000", 4) = 4 [pid 5090] close(3) = 0 [pid 5090] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME|O_CLOEXEC) = 3 [pid 5090] ioctl(3, BLKZEROOUT, [0, 137438955520] [pid 5065] kill(-5090, SIGKILL) = 0 [pid 5065] kill(5090, SIGKILL) = 0 [pid 5065] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5065] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5065] getdents64(3, 0x55555745f6f0 /* 2 entries */, 32768) = 48 [pid 5065] getdents64(3, 0x55555745f6f0 /* 0 entries */, 32768) = 0 [pid 5065] close(3) = 0 [ 286.031587][ T29] INFO: task syz-executor686:5080 blocked for more than 143 seconds. [ 286.040080][ T29] Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0 [ 286.055971][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.064722][ T29] task:syz-executor686 state:D stack:27400 pid:5080 tgid:5080 ppid:5057 flags:0x00004006 [ 286.074941][ T29] Call Trace: [ 286.078542][ T29] [ 286.081543][ T29] __schedule+0xf12/0x5c00 [ 286.086305][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 286.092644][ T29] ? hlock_class+0x4e/0x130 [ 286.097461][ T29] ? mark_lock+0xb5/0xc50 [ 286.101866][ T29] ? io_schedule_timeout+0x150/0x150 [ 286.107454][ T29] ? schedule+0x1fc/0x270 [ 286.111837][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 286.117531][ T29] ? __down_write_common+0x899/0x1400 [ 286.123292][ T29] schedule+0xe9/0x270 [ 286.127663][ T29] schedule_preempt_disabled+0x13/0x20 [ 286.133182][ T29] __down_write_common+0x948/0x1400 [ 286.138411][ T29] ? up_write+0x510/0x510 [ 286.151337][ T29] ? lock_sync+0x190/0x190 [ 286.155821][ T29] ? preempt_count_sub+0x160/0x160 [ 286.161647][ T29] blkdev_common_ioctl+0x1109/0x1cc0 [ 286.167272][ T29] ? blkdev_pr_preempt+0x2f0/0x2f0 [ 286.182318][ T29] ? find_held_lock+0x2d/0x110 [ 286.187145][ T29] blkdev_ioctl+0x243/0x760 [ 286.202179][ T29] ? blkdev_common_ioctl+0x1cc0/0x1cc0 [ 286.208883][ T29] ? bpf_lsm_file_ioctl+0x9/0x10 [ 286.231601][ T29] ? blkdev_common_ioctl+0x1cc0/0x1cc0 [ 286.237119][ T29] __x64_sys_ioctl+0x18f/0x210 [ 286.252524][ T29] do_syscall_64+0xd3/0x250 [ 286.258279][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 286.265118][ T29] RIP: 0033:0x7f8956e63ae9 [ 286.270597][ T29] RSP: 002b:00007ffcb5a45ce8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 286.285037][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f8956e63ae9 [ 286.298228][ T29] RDX: 0000000020000040 RSI: 000000000000127f RDI: 0000000000000003 [ 286.307437][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 286.316372][ T29] R10: 0000000000000000 R11: 0000000000000246 R12: 000000000000dbac [ 286.325668][ T29] R13: 00007ffcb5a45cfc R14: 00007ffcb5a45d10 R15: 00007ffcb5a45d00 [ 286.334885][ T29] [ 286.354552][ T29] [ 286.354552][ T29] Showing all locks held in the system: [ 286.363414][ T29] 1 lock held by kworker/1:0H/24: [ 286.369259][ T29] 1 lock held by khungtaskd/29: [ 286.375418][ T29] #0: ffffffff8d1acba0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340 [ 286.429190][ T29] 2 locks held by syslogd/4490: [ 286.452513][ T29] 2 locks held by klogd/4497: [ 286.457235][ T29] 2 locks held by getty/4805: [ 286.482174][ T29] #0: ffff88802ea8a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 286.493668][ T29] #1: ffffc9000311b2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc6/0x1490 [ 286.504452][ T29] 1 lock held by syz-executor686/5069: [ 286.510203][ T29] 1 lock held by syz-executor686/5080: [ 286.516621][ T29] #0: ffff88801b49fc40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x1109/0x1cc0 [ 286.528465][ T29] 1 lock held by syz-executor686/5081: [ 286.534280][ T29] #0: ffff88801b49fc40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x1109/0x1cc0 [ 286.545465][ T29] 1 lock held by syz-executor686/5082: [ 286.551212][ T29] #0: ffff88801b49fc40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x1109/0x1cc0 [ 286.562881][ T29] 1 lock held by syz-executor686/5089: [ 286.568655][ T29] #0: ffff88801b49fc40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x1109/0x1cc0 [ 286.580357][ T29] 1 lock held by syz-executor686/5090: [ 286.586166][ T29] #0: ffff88801b49fc40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_common_ioctl+0x1109/0x1cc0 [ 286.597880][ T29] [ 286.600481][ T29] ============================================= [ 286.600481][ T29] [ 286.608927][ T29] NMI backtrace for cpu 0 [ 286.613254][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0 [ 286.623064][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 286.633132][ T29] Call Trace: [ 286.636418][ T29] [ 286.639353][ T29] dump_stack_lvl+0xd9/0x1b0 [ 286.643956][ T29] nmi_cpu_backtrace+0x277/0x390 [ 286.648906][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 286.654123][ T29] nmi_trigger_cpumask_backtrace+0x299/0x300 [ 286.660120][ T29] watchdog+0xf87/0x1210 [ 286.664387][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 286.670380][ T29] ? lockdep_hardirqs_on+0x7d/0x110 [ 286.675594][ T29] ? __kthread_parkme+0x14b/0x220 [ 286.680722][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 286.686729][ T29] kthread+0x2c6/0x3a0 [ 286.690812][ T29] ? _raw_spin_unlock_irq+0x23/0x50 [ 286.696021][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 286.701667][ T29] ret_from_fork+0x45/0x80 [ 286.706091][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 286.711738][ T29] ret_from_fork_asm+0x11/0x20 [ 286.716530][ T29] [ 286.719928][ T29] Sending NMI from CPU 0 to CPUs 1: [ 286.725361][ C1] NMI backtrace for cpu 1 [ 286.725370][ C1] CPU: 1 PID: 4497 Comm: klogd Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0 [ 286.725384][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 286.725391][ C1] RIP: 0010:lock_release+0x38f/0x690 [ 286.725409][ C1] Code: 85 42 02 00 00 0b 05 80 dd 3a 11 0f 84 5a 01 00 00 48 c7 c7 80 b1 cc 8a e8 7e d0 25 09 b8 ff ff ff ff 65 0f c1 05 09 12 9a 7e <83> f8 01 0f 85 c8 01 00 00 9c 58 f6 c4 02 0f 85 b3 01 00 00 48 f7 [ 286.725421][ C1] RSP: 0018:ffffc900031c76d0 EFLAGS: 00000057 [ 286.725431][ C1] RAX: 0000000000000001 RBX: b56ff67b6f1744f3 RCX: ffffc900031c7720 [ 286.725439][ C1] RDX: 1ffff1100f32e156 RSI: ffffffff8accb180 RDI: ffffffff8b2fd380 [ 286.725447][ C1] RBP: 1ffff92000638edc R08: 0000000000000000 R09: fffffbfff1e75f02 [ 286.725455][ C1] R10: ffffffff8f3af817 R11: 0000000000000001 R12: 0000000000000001 [ 286.725462][ C1] R13: 0000000000000002 R14: ffff888079970ab8 R15: ffff888079970000 [ 286.725474][ C1] FS: 00007f3f53c41380(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 286.725486][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 286.725495][ C1] CR2: 00005623c74ab680 CR3: 000000002d6d7000 CR4: 0000000000350ef0 [ 286.725503][ C1] Call Trace: [ 286.725507][ C1] [ 286.725512][ C1] ? show_regs+0x8f/0xa0 [ 286.725528][ C1] ? nmi_cpu_backtrace+0x1d4/0x390 [ 286.725545][ C1] ? nmi_cpu_backtrace_handler+0xc/0x10 [ 286.725562][ C1] ? nmi_handle+0x1a6/0x570 [ 286.725577][ C1] ? x86_pmu_event_mapped+0x1c0/0x1c0 [ 286.725596][ C1] ? lock_release+0x38f/0x690 [ 286.725607][ C1] ? default_do_nmi+0x6a/0x160 [ 286.725626][ C1] ? exc_nmi+0x186/0x200 [ 286.725644][ C1] ? end_repeat_nmi+0xf/0x2a [ 286.725662][ C1] ? lock_release+0x38f/0x690 [ 286.725673][ C1] ? lock_release+0x38f/0x690 [ 286.725684][ C1] ? lock_release+0x38f/0x690 [ 286.725695][ C1] [ 286.725698][ C1] [ 286.725701][ C1] ? kasan_release_object_meta+0x26/0xa0 [ 286.725717][ C1] ? reacquire_held_locks+0x4c0/0x4c0 [ 286.725732][ C1] _raw_write_unlock_irqrestore+0x1a/0x70 [ 286.725751][ C1] kasan_release_object_meta+0x26/0xa0 [ 286.725766][ C1] qlist_free_all+0x44/0x150 [ 286.725783][ C1] kasan_quarantine_reduce+0x18e/0x1d0 [ 286.725800][ C1] __kasan_kmalloc+0x86/0xb0 [ 286.725813][ C1] __kmalloc_node_track_caller+0x219/0x460 [ 286.725832][ C1] ? __alloc_skb+0x12b/0x330 [ 286.725846][ C1] kmalloc_reserve+0xef/0x260 [ 286.725865][ C1] __alloc_skb+0x12b/0x330 [ 286.725877][ C1] ? __napi_build_skb+0x50/0x50 [ 286.725889][ C1] ? __lock_acquire+0x1502/0x3b30 [ 286.725903][ C1] alloc_skb_with_frags+0xe4/0x710 [ 286.725919][ C1] sock_alloc_send_pskb+0x7e4/0x970 [ 286.725936][ C1] ? lock_acquire+0x1ae/0x520 [ 286.725949][ C1] ? sock_wmalloc+0x120/0x120 [ 286.725964][ C1] ? reacquire_held_locks+0x4c0/0x4c0 [ 286.725975][ C1] ? do_raw_spin_lock+0x12e/0x2b0 [ 286.725988][ C1] ? spin_bug+0x1d0/0x1d0 [ 286.726001][ C1] unix_dgram_sendmsg+0x464/0x1ca0 [ 286.726021][ C1] ? aa_sk_perm+0x2f8/0xb40 [ 286.726039][ C1] ? unix_stream_recvmsg+0x1b0/0x1b0 [ 286.726056][ C1] ? aa_af_perm+0x250/0x250 [ 286.726073][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 286.726091][ C1] ? unix_stream_recvmsg+0x1b0/0x1b0 [ 286.726108][ C1] __sock_sendmsg+0xd5/0x180 [ 286.726127][ C1] __sys_sendto+0x225/0x310 [ 286.726140][ C1] ? __ia32_sys_getpeername+0xb0/0xb0 [ 286.726152][ C1] ? reacquire_held_locks+0x4c0/0x4c0 [ 286.726168][ C1] ? rcu_is_watching+0x12/0xb0 [ 286.726186][ C1] ? folio_memcg_unlock+0x240/0x240 [ 286.726201][ C1] ? handle_edge_irq+0x40a/0xcf0 [ 286.726221][ C1] __x64_sys_sendto+0xe0/0x1b0 [ 286.726233][ C1] ? do_syscall_64+0x93/0x250 [ 286.726254][ C1] ? lockdep_hardirqs_on+0x7d/0x110 [ 286.726266][ C1] do_syscall_64+0xd3/0x250 [ 286.726283][ C1] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 286.726299][ C1] RIP: 0033:0x7f3f53da39b5 [ 286.726308][ C1] Code: 8b 44 24 08 48 83 c4 28 48 98 c3 48 98 c3 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 26 45 31 c9 45 31 c0 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 7a 48 8b 15 44 c4 0c 00 f7 d8 64 89 02 48 83 [ 286.726319][ C1] RSP: 002b:00007ffe733cc548 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 286.726330][ C1] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f3f53da39b5 [ 286.726338][ C1] RDX: 000000000000004f RSI: 0000564ad490ea80 RDI: 0000000000000003 [ 286.726345][ C1] RBP: 0000564ad490a910 R08: 0000000000000000 R09: 0000000000000000 [ 286.726352][ C1] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000013 [ 286.726360][ C1] R13: 00007f3f53f31212 R14: 00007ffe733cc648 R15: 0000000000000000 [ 286.726372][ C1] [ 286.726377][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.016 msecs [ 286.735076][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 286.735087][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0 [ 286.735105][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 286.735113][ T29] Call Trace: [ 286.735119][ T29] [ 286.735125][ T29] dump_stack_lvl+0xd9/0x1b0 [ 286.735150][ T29] panic+0x6dc/0x790 [ 286.735173][ T29] ? panic_smp_self_stop+0xa0/0xa0 [ 286.735194][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 286.735221][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 286.735244][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 286.735268][ T29] ? watchdog+0xd3e/0x1210 [ 286.735289][ T29] ? watchdog+0xd31/0x1210 [ 286.735311][ T29] watchdog+0xd4f/0x1210 [ 286.735335][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 286.735356][ T29] ? lockdep_hardirqs_on+0x7d/0x110 [ 286.735375][ T29] ? __kthread_parkme+0x14b/0x220 [ 286.735395][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 286.735417][ T29] kthread+0x2c6/0x3a0 [ 286.735435][ T29] ? _raw_spin_unlock_irq+0x23/0x50 [ 286.735456][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 286.735477][ T29] ret_from_fork+0x45/0x80 [ 286.735497][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 286.735518][ T29] ret_from_fork_asm+0x11/0x20 [ 286.735547][ T29] [ 286.735927][ T29] Kernel Offset: disabled [ 287.326692][ T29] Rebooting in 86400 seconds..