./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3539355349 <...> [ 97.202018][ T55] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.0.188' (ED25519) to the list of known hosts. execve("./syz-executor3539355349", ["./syz-executor3539355349"], 0x7fff999dd3f0 /* 10 vars */) = 0 brk(NULL) = 0x555556d2a000 brk(0x555556d2ad00) = 0x555556d2ad00 arch_prctl(ARCH_SET_FS, 0x555556d2a380) = 0 set_tid_address(0x555556d2a650) = 5049 set_robust_list(0x555556d2a660, 24) = 0 rseq(0x555556d2aca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3539355349", 4096) = 28 getrandom("\xe4\xf2\x61\xcc\x5c\x7e\x08\xef", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555556d2ad00 brk(0x555556d4bd00) = 0x555556d4bd00 brk(0x555556d4c000) = 0x555556d4c000 mprotect(0x7f4c787ef000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556d2a650) = 5050 ./strace-static-x86_64: Process 5050 attached [pid 5049] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5050] set_robust_list(0x555556d2a660, 24) = 0 [pid 5050] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5051 attached [pid 5049] <... clone resumed>, child_tidptr=0x555556d2a650) = 5051 [pid 5051] set_robust_list(0x555556d2a660, 24 [pid 5049] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5051] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5052 attached [pid 5052] set_robust_list(0x555556d2a660, 24 [pid 5050] <... clone resumed>, child_tidptr=0x555556d2a650) = 5052 [pid 5052] <... set_robust_list resumed>) = 0 [pid 5052] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5052] setpgid(0, 0) = 0 [pid 5052] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5053 attached ) = 3 [pid 5051] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5049] <... clone resumed>, child_tidptr=0x555556d2a650) = 5053 [pid 5052] write(3, "1000", 4) = 4 [pid 5052] close(3) = 0 [pid 5052] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3 [pid 5049] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5053] set_robust_list(0x555556d2a660, 24 [pid 5052] dup(3) = 4 [pid 5052] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807 [pid 5053] <... set_robust_list resumed>) = 0 [pid 5053] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5051] <... clone resumed>, child_tidptr=0x555556d2a650) = 5054 ./strace-static-x86_64: Process 5054 attached [pid 5054] set_robust_list(0x555556d2a660, 24) = 0 ./strace-static-x86_64: Process 5055 attached [pid 5049] <... clone resumed>, child_tidptr=0x555556d2a650) = 5055 [pid 5054] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5055] set_robust_list(0x555556d2a660, 24 [pid 5054] <... prctl resumed>) = 0 [pid 5049] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5055] <... set_robust_list resumed>) = 0 [pid 5054] setpgid(0, 0 [pid 5055] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5054] <... setpgid resumed>) = 0 ./strace-static-x86_64: Process 5057 attached ./strace-static-x86_64: Process 5056 attached [pid 5054] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5053] <... clone resumed>, child_tidptr=0x555556d2a650) = 5056 [pid 5049] <... clone resumed>, child_tidptr=0x555556d2a650) = 5057 [pid 5057] set_robust_list(0x555556d2a660, 24 [pid 5056] set_robust_list(0x555556d2a660, 24 [pid 5049] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5057] <... set_robust_list resumed>) = 0 [pid 5056] <... set_robust_list resumed>) = 0 [pid 5057] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5056] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5058 attached [pid 5054] <... openat resumed>) = 3 [pid 5058] set_robust_list(0x555556d2a660, 24 [pid 5056] <... prctl resumed>) = 0 [pid 5055] <... clone resumed>, child_tidptr=0x555556d2a650) = 5058 [pid 5058] <... set_robust_list resumed>) = 0 [pid 5058] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5058] setpgid(0, 0) = 0 [pid 5058] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5058] write(3, "1000", 4) = 4 [pid 5056] setpgid(0, 0 [pid 5054] write(3, "1000", 4./strace-static-x86_64: Process 5059 attached ./strace-static-x86_64: Process 5060 attached [pid 5058] close(3 [pid 5056] <... setpgid resumed>) = 0 [pid 5054] <... write resumed>) = 4 [pid 5049] <... clone resumed>, child_tidptr=0x555556d2a650) = 5059 [pid 5059] set_robust_list(0x555556d2a660, 24 [pid 5060] set_robust_list(0x555556d2a660, 24 [pid 5058] <... close resumed>) = 0 [pid 5057] <... clone resumed>, child_tidptr=0x555556d2a650) = 5060 [pid 5056] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5059] <... set_robust_list resumed>) = 0 [pid 5060] <... set_robust_list resumed>) = 0 [pid 5058] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5056] <... openat resumed>) = 3 [pid 5054] close(3 [pid 5059] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5060] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5058] <... openat resumed>) = 3 [pid 5056] write(3, "1000", 4 [pid 5060] <... prctl resumed>) = 0 [pid 5058] dup(3 [pid 5056] <... write resumed>) = 4 [pid 5054] <... close resumed>) = 0 [pid 5056] close(3 [pid 5060] setpgid(0, 0 [pid 5058] <... dup resumed>) = 4 [pid 5054] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5060] <... setpgid resumed>) = 0 [pid 5058] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807 [pid 5060] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5056] <... close resumed>) = 0 [pid 5054] <... openat resumed>) = 3 [pid 5060] <... openat resumed>) = 3 [pid 5060] write(3, "1000", 4 [pid 5056] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5060] <... write resumed>) = 4 [pid 5056] <... openat resumed>) = 3 [pid 5054] dup(3) = 4 [pid 5060] close(3 [pid 5054] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807./strace-static-x86_64: Process 5061 attached [pid 5060] <... close resumed>) = 0 [pid 5056] dup(3 [pid 5061] set_robust_list(0x555556d2a660, 24) = 0 [pid 5059] <... clone resumed>, child_tidptr=0x555556d2a650) = 5061 [pid 5060] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5056] <... dup resumed>) = 4 [pid 5060] <... openat resumed>) = 3 [pid 5061] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5060] dup(3 [pid 5056] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807 [pid 5060] <... dup resumed>) = 4 [pid 5061] <... prctl resumed>) = 0 [pid 5060] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807 [pid 5061] setpgid(0, 0) = 0 [pid 5061] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5061] write(3, "1000", 4) = 4 [pid 5061] close(3) = 0 [pid 5061] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3 [pid 5061] dup(3) = 4 [pid 5061] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807 [pid 5050] kill(-5052, SIGKILL) = 0 [pid 5050] kill(5052, SIGKILL) = 0 [pid 5051] kill(-5054, SIGKILL) = 0 [pid 5051] kill(5054, SIGKILL) = 0 [pid 5053] kill(-5056, SIGKILL) = 0 [pid 5053] kill(5056, SIGKILL) = 0 [pid 5055] kill(-5058, SIGKILL) = 0 [pid 5055] kill(5058, SIGKILL) = 0 [pid 5057] kill(-5060, SIGKILL) = 0 [pid 5057] kill(5060, SIGKILL) = 0 [pid 5059] kill(-5061, SIGKILL) = 0 [pid 5059] kill(5061, SIGKILL) = 0 [pid 5051] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5050] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5051] newfstatat(3, "", [pid 5050] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5051] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5051] getdents64(3, [pid 5050] getdents64(3, [pid 5059] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5051] <... getdents64 resumed>0x555556d2b6f0 /* 2 entries */, 32768) = 48 [pid 5051] getdents64(3, [pid 5050] <... getdents64 resumed>0x555556d2b6f0 /* 2 entries */, 32768) = 48 [pid 5059] newfstatat(3, "", [pid 5050] getdents64(3, [pid 5059] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5050] <... getdents64 resumed>0x555556d2b6f0 /* 0 entries */, 32768) = 0 [pid 5059] getdents64(3, [pid 5050] close(3 [pid 5051] <... getdents64 resumed>0x555556d2b6f0 /* 0 entries */, 32768) = 0 [pid 5051] close(3) = 0 [pid 5050] <... close resumed>) = 0 [pid 5059] <... getdents64 resumed>0x555556d2b6f0 /* 2 entries */, 32768) = 48 [pid 5059] getdents64(3, 0x555556d2b6f0 /* 0 entries */, 32768) = 0 [pid 5059] close(3) = 0 [pid 5057] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5057] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5057] getdents64(3, [pid 5053] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5057] <... getdents64 resumed>0x555556d2b6f0 /* 2 entries */, 32768) = 48 [pid 5057] getdents64(3, 0x555556d2b6f0 /* 0 entries */, 32768) = 0 [pid 5055] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5057] close(3) = 0 [pid 5055] <... openat resumed>) = 3 [pid 5053] <... openat resumed>) = 3 [pid 5053] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5053] getdents64(3, 0x555556d2b6f0 /* 2 entries */, 32768) = 48 [pid 5053] getdents64(3, [pid 5055] newfstatat(3, "", [pid 5053] <... getdents64 resumed>0x555556d2b6f0 /* 0 entries */, 32768) = 0 [pid 5055] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5053] close(3) = 0 [pid 5055] getdents64(3, 0x555556d2b6f0 /* 2 entries */, 32768) = 48 [pid 5055] getdents64(3, 0x555556d2b6f0 /* 0 entries */, 32768) = 0 [pid 5055] close(3) = 0 [pid 5052] <... fallocate resumed>) = ? [pid 5052] +++ killed by SIGKILL +++ [pid 5050] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5052, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=11572 /* 115.72 s */} --- [pid 5050] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556d2a650) = 5078 ./strace-static-x86_64: Process 5078 attached [pid 5078] set_robust_list(0x555556d2a660, 24) = 0 [pid 5078] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5078] setpgid(0, 0) = 0 [pid 5078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5078] write(3, "1000", 4) = 4 [pid 5078] close(3) = 0 [pid 5078] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3 [pid 5078] dup(3) = 4 [pid 5078] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 9223372036854775807 [pid 5050] kill(-5078, SIGKILL) = 0 [pid 5050] kill(5078, SIGKILL) = 0 [pid 5050] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5050] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5050] getdents64(3, 0x555556d2b6f0 /* 2 entries */, 32768) = 48 [pid 5050] getdents64(3, 0x555556d2b6f0 /* 0 entries */, 32768) = 0 [pid 5050] close(3) = 0 [ 286.639750][ T29] INFO: task syz-executor353:5054 blocked for more than 143 seconds. [ 286.648495][ T29] Not tainted 6.6.0-rc2-syzkaller-00018-g2cf0f7156238 #0 [ 286.656663][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.665962][ T29] task:syz-executor353 state:D stack:27408 pid:5054 ppid:5051 flags:0x00004006 [ 286.675781][ T29] Call Trace: [ 286.679163][ T29] [ 286.682650][ T29] __schedule+0xee1/0x5a10 [ 286.687665][ T29] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 286.693774][ T29] ? print_usage_bug.part.0+0x670/0x670 [ 286.699500][ T29] ? io_schedule_timeout+0x150/0x150 [ 286.705352][ T29] ? rwsem_down_write_slowpath+0x48e/0x12a0 [ 286.711868][ T29] schedule+0xe7/0x1b0 [ 286.716017][ T29] schedule_preempt_disabled+0x13/0x20 [ 286.721627][ T29] rwsem_down_write_slowpath+0x53d/0x12a0 [ 286.727437][ T29] ? down_timeout+0x90/0x90 [ 286.732082][ T29] ? lock_sync+0x190/0x190 [ 286.736576][ T29] ? preempt_count_sub+0x150/0x150 [ 286.742300][ T29] down_write+0x1d3/0x200 [ 286.746709][ T29] ? rwsem_down_write_slowpath+0x12a0/0x12a0 [ 286.753670][ T29] blkdev_fallocate+0x1e6/0x3e0 [ 286.759596][ T29] ? file_to_blk_mode+0x130/0x130 [ 286.764691][ T29] vfs_fallocate+0x46c/0xe80 [ 286.769892][ T29] __x64_sys_fallocate+0xd5/0x140 [ 286.775515][ T29] do_syscall_64+0x38/0xb0 [ 286.780584][ T29] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 286.786997][ T29] RIP: 0033:0x7f4c7877cb29 [ 286.791993][ T29] RSP: 002b:00007ffcccfda2e8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.800537][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4c7877cb29 [ 286.808559][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 286.816626][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 286.824730][ T29] R10: 7fffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 286.833296][ T29] R13: 00007ffcccfda508 R14: 00007ffcccfda310 R15: 00007ffcccfda300 [ 286.841963][ T29] [ 286.845063][ T29] INFO: task syz-executor353:5056 blocked for more than 143 seconds. [ 286.853729][ T29] Not tainted 6.6.0-rc2-syzkaller-00018-g2cf0f7156238 #0 [ 286.862104][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.870886][ T29] task:syz-executor353 state:D stack:28160 pid:5056 ppid:5053 flags:0x00004006 [ 286.880813][ T29] Call Trace: [ 286.884607][ T29] [ 286.888066][ T29] __schedule+0xee1/0x5a10 [ 286.892592][ T29] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 286.899232][ T29] ? print_usage_bug.part.0+0x670/0x670 [ 286.904873][ T29] ? io_schedule_timeout+0x150/0x150 [ 286.910273][ T29] ? rwsem_down_write_slowpath+0x48e/0x12a0 [ 286.916254][ T29] schedule+0xe7/0x1b0 [ 286.920463][ T29] schedule_preempt_disabled+0x13/0x20 [ 286.925979][ T29] rwsem_down_write_slowpath+0x53d/0x12a0 [ 286.931818][ T29] ? down_timeout+0x90/0x90 [ 286.936911][ T29] ? lock_sync+0x190/0x190 [ 286.941955][ T29] ? preempt_count_sub+0x150/0x150 [ 286.947655][ T29] down_write+0x1d3/0x200 [ 286.952647][ T29] ? rwsem_down_write_slowpath+0x12a0/0x12a0 [ 286.959346][ T29] blkdev_fallocate+0x1e6/0x3e0 [ 286.964277][ T29] ? file_to_blk_mode+0x130/0x130 [ 286.969934][ T29] vfs_fallocate+0x46c/0xe80 [ 286.975115][ T29] __x64_sys_fallocate+0xd5/0x140 [ 286.980295][ T29] do_syscall_64+0x38/0xb0 [ 286.985239][ T29] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 286.991256][ T29] RIP: 0033:0x7f4c7877cb29 [ 286.995715][ T29] RSP: 002b:00007ffcccfda2e8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.004278][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4c7877cb29 [ 287.012355][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.020430][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.028930][ T29] R10: 7fffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 287.037546][ T29] R13: 00007ffcccfda508 R14: 00007ffcccfda310 R15: 00007ffcccfda300 [ 287.046256][ T29] [ 287.049392][ T29] INFO: task syz-executor353:5060 blocked for more than 143 seconds. [ 287.057976][ T29] Not tainted 6.6.0-rc2-syzkaller-00018-g2cf0f7156238 #0 [ 287.066186][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.075467][ T29] task:syz-executor353 state:D stack:28160 pid:5060 ppid:5057 flags:0x00004006 [ 287.085289][ T29] Call Trace: [ 287.088608][ T29] [ 287.092139][ T29] __schedule+0xee1/0x5a10 [ 287.096626][ T29] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 287.102747][ T29] ? print_usage_bug.part.0+0x670/0x670 [ 287.108373][ T29] ? io_schedule_timeout+0x150/0x150 [ 287.113781][ T29] ? rwsem_down_write_slowpath+0x48e/0x12a0 [ 287.119831][ T29] schedule+0xe7/0x1b0 [ 287.123963][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.129536][ T29] rwsem_down_write_slowpath+0x53d/0x12a0 [ 287.135336][ T29] ? down_timeout+0x90/0x90 [ 287.139985][ T29] ? lock_sync+0x190/0x190 [ 287.144989][ T29] ? preempt_count_sub+0x150/0x150 [ 287.150302][ T29] down_write+0x1d3/0x200 [ 287.155235][ T29] ? rwsem_down_write_slowpath+0x12a0/0x12a0 [ 287.161849][ T29] blkdev_fallocate+0x1e6/0x3e0 [ 287.167275][ T29] ? file_to_blk_mode+0x130/0x130 [ 287.172967][ T29] vfs_fallocate+0x46c/0xe80 [ 287.178091][ T29] __x64_sys_fallocate+0xd5/0x140 [ 287.183783][ T29] do_syscall_64+0x38/0xb0 [ 287.188273][ T29] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 287.194754][ T29] RIP: 0033:0x7f4c7877cb29 [ 287.199282][ T29] RSP: 002b:00007ffcccfda2e8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.207746][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4c7877cb29 [ 287.216354][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.224843][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.233390][ T29] R10: 7fffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 287.241913][ T29] R13: 00007ffcccfda508 R14: 00007ffcccfda310 R15: 00007ffcccfda300 [ 287.250465][ T29] [ 287.254058][ T29] INFO: task syz-executor353:5061 blocked for more than 143 seconds. [ 287.262615][ T29] Not tainted 6.6.0-rc2-syzkaller-00018-g2cf0f7156238 #0 [ 287.271070][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.280567][ T29] task:syz-executor353 state:D stack:27312 pid:5061 ppid:5059 flags:0x00004006 [ 287.289931][ T29] Call Trace: [ 287.293268][ T29] [ 287.296238][ T29] __schedule+0xee1/0x5a10 [ 287.300807][ T29] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 287.307273][ T29] ? print_usage_bug.part.0+0x670/0x670 [ 287.313445][ T29] ? io_schedule_timeout+0x150/0x150 [ 287.319320][ T29] ? rwsem_down_write_slowpath+0x48e/0x12a0 [ 287.325693][ T29] schedule+0xe7/0x1b0 [ 287.330353][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.336327][ T29] rwsem_down_write_slowpath+0x53d/0x12a0 [ 287.342644][ T29] ? down_timeout+0x90/0x90 [ 287.347677][ T29] ? lock_sync+0x190/0x190 [ 287.352233][ T29] ? preempt_count_sub+0x150/0x150 [ 287.357477][ T29] down_write+0x1d3/0x200 [ 287.361962][ T29] ? rwsem_down_write_slowpath+0x12a0/0x12a0 [ 287.368466][ T29] blkdev_fallocate+0x1e6/0x3e0 [ 287.373450][ T29] ? file_to_blk_mode+0x130/0x130 [ 287.378704][ T29] vfs_fallocate+0x46c/0xe80 [ 287.383816][ T29] __x64_sys_fallocate+0xd5/0x140 [ 287.388948][ T29] do_syscall_64+0x38/0xb0 [ 287.394025][ T29] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 287.400824][ T29] RIP: 0033:0x7f4c7877cb29 [ 287.405731][ T29] RSP: 002b:00007ffcccfda2e8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.415213][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4c7877cb29 [ 287.423332][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.431411][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.440544][ T29] R10: 7fffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 287.448996][ T29] R13: 00007ffcccfda508 R14: 00007ffcccfda310 R15: 00007ffcccfda300 [ 287.457816][ T29] [ 287.462206][ T29] [ 287.462206][ T29] Showing all locks held in the system: [ 287.470819][ T29] 1 lock held by khungtaskd/29: [ 287.476128][ T29] #0: ffffffff8cbab2e0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340 [ 287.486919][ T29] 2 locks held by getty/4805: [ 287.491784][ T29] #0: ffff88814aabf0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 287.502022][ T29] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc5/0x1480 [ 287.513021][ T29] 1 lock held by syz-executor353/5054: [ 287.518966][ T29] #0: ffff88801b07ce40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e6/0x3e0 [ 287.530731][ T29] 1 lock held by syz-executor353/5056: [ 287.536671][ T29] #0: ffff88801b07ce40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e6/0x3e0 [ 287.547542][ T29] 1 lock held by syz-executor353/5058: [ 287.553101][ T29] 1 lock held by syz-executor353/5060: [ 287.559005][ T29] #0: ffff88801b07ce40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e6/0x3e0 [ 287.570414][ T29] 1 lock held by syz-executor353/5061: [ 287.575920][ T29] #0: ffff88801b07ce40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e6/0x3e0 [ 287.587618][ T29] 1 lock held by syz-executor353/5078: [ 287.593844][ T29] #0: ffff88801b07ce40 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e6/0x3e0 [ 287.605397][ T29] [ 287.608196][ T29] ============================================= [ 287.608196][ T29] [ 287.616741][ T29] NMI backtrace for cpu 1 [ 287.621103][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.6.0-rc2-syzkaller-00018-g2cf0f7156238 #0 [ 287.630926][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023 [ 287.640999][ T29] Call Trace: [ 287.644289][ T29] [ 287.647249][ T29] dump_stack_lvl+0xd9/0x1b0 [ 287.651866][ T29] nmi_cpu_backtrace+0x277/0x380 [ 287.656845][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 287.662089][ T29] nmi_trigger_cpumask_backtrace+0x299/0x300 [ 287.668114][ T29] watchdog+0xf87/0x1210 [ 287.672402][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.678413][ T29] ? lockdep_hardirqs_on+0x7d/0x100 [ 287.683659][ T29] ? __kthread_parkme+0x14b/0x220 [ 287.688724][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.694738][ T29] kthread+0x33c/0x440 [ 287.698840][ T29] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.704086][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.709753][ T29] ret_from_fork+0x45/0x80 [ 287.714197][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.719876][ T29] ret_from_fork_asm+0x11/0x20 [ 287.724689][ T29] [ 287.727906][ T29] Sending NMI from CPU 1 to CPUs 0: [ 287.733359][ C0] NMI backtrace for cpu 0 [ 287.733369][ C0] CPU: 0 PID: 5058 Comm: syz-executor353 Not tainted 6.6.0-rc2-syzkaller-00018-g2cf0f7156238 #0 [ 287.733395][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023 [ 287.733407][ C0] RIP: 0010:preempt_count_add+0x2d/0x140 [ 287.733436][ C0] Code: fa 48 c7 c0 e0 d5 2d 92 55 48 ba 00 00 00 00 00 fc ff df 48 89 c1 53 83 e0 07 89 fb 48 c1 e9 03 83 c0 03 65 01 3d 9b 18 a9 7e <0f> b6 14 11 38 d0 7c 08 84 d2 0f 85 d4 00 00 00 8b 15 9d 31 d3 10 [ 287.733457][ C0] RSP: 0018:ffffc90003acf180 EFLAGS: 00000282 [ 287.733475][ C0] RAX: 0000000000000003 RBX: 0000000000000001 RCX: 1ffffffff245babc [ 287.733489][ C0] RDX: dffffc0000000000 RSI: ffffffff813a47d7 RDI: 0000000000000001 [ 287.733503][ C0] RBP: 0000000000000001 R08: 0000000000000005 R09: 0000000000000000 [ 287.733516][ C0] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc90003acf218 [ 287.733529][ C0] R13: ffffffff81756c40 R14: ffffc90003acf2d8 R15: ffff88801c9c8000 [ 287.733544][ C0] FS: 0000555556d2a380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 287.733566][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.733581][ C0] CR2: 000055e501c4e680 CR3: 0000000071c29000 CR4: 00000000003506f0 [ 287.733595][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.733608][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.733622][ C0] Call Trace: [ 287.733628][ C0] [ 287.733635][ C0] ? show_regs+0x8f/0xa0 [ 287.733679][ C0] ? nmi_cpu_backtrace+0x1d4/0x380 [ 287.733734][ C0] ? nmi_cpu_backtrace_handler+0xc/0x10 [ 287.733769][ C0] ? nmi_handle+0x1a6/0x570 [ 287.733798][ C0] ? preempt_count_add+0x2d/0x140 [ 287.733824][ C0] ? default_do_nmi+0x69/0x160 [ 287.733853][ C0] ? exc_nmi+0x171/0x1e0 [ 287.733879][ C0] ? end_repeat_nmi+0x16/0x31 [ 287.733909][ C0] ? write_profile+0x450/0x450 [ 287.733948][ C0] ? unwind_next_frame+0x67/0x2390 [ 287.733986][ C0] ? preempt_count_add+0x2d/0x140 [ 287.734012][ C0] ? preempt_count_add+0x2d/0x140 [ 287.734038][ C0] ? preempt_count_add+0x2d/0x140 [ 287.734064][ C0] [ 287.734070][ C0] [ 287.734077][ C0] unwind_next_frame+0xca/0x2390 [ 287.734115][ C0] ? bio_split_rw+0x622/0x820 [ 287.734150][ C0] ? bio_split_rw+0x622/0x820 [ 287.734183][ C0] ? write_profile+0x450/0x450 [ 287.734218][ C0] arch_stack_walk+0xfa/0x170 [ 287.734244][ C0] ? bio_split_rw+0x622/0x820 [ 287.734280][ C0] stack_trace_save+0x96/0xd0 [ 287.734316][ C0] ? filter_irq_stacks+0x90/0x90 [ 287.734356][ C0] kasan_save_stack+0x33/0x50 [ 287.734395][ C0] ? kasan_save_stack+0x33/0x50 [ 287.734431][ C0] ? kasan_set_track+0x25/0x30 [ 287.734466][ C0] ? __kasan_slab_alloc+0x81/0x90 [ 287.734505][ C0] ? kmem_cache_alloc+0x16c/0x3b0 [ 287.734541][ C0] ? mempool_alloc+0x176/0x390 [ 287.734574][ C0] ? bio_alloc_bioset+0x411/0x8b0 [ 287.734605][ C0] ? bio_split+0xfb/0x400 [ 287.734634][ C0] ? bio_split_rw+0x622/0x820 [ 287.734694][ C0] kasan_set_track+0x25/0x30 [ 287.734738][ C0] __kasan_slab_alloc+0x81/0x90 [ 287.734763][ C0] kmem_cache_alloc+0x16c/0x3b0 [ 287.734802][ C0] ? mempool_free+0x3b0/0x3b0 [ 287.734834][ C0] mempool_alloc+0x176/0x390 [ 287.734870][ C0] ? mempool_resize+0x7d0/0x7d0 [ 287.734906][ C0] ? print_usage_bug.part.0+0x670/0x670 [ 287.734947][ C0] bio_alloc_bioset+0x411/0x8b0 [ 287.734981][ C0] ? bvec_alloc+0x200/0x200 [ 287.735011][ C0] ? __blk_mq_alloc_requests+0xfbc/0x1310 [ 287.735037][ C0] ? reacquire_held_locks+0x4b0/0x4b0 [ 287.735075][ C0] bio_split+0xfb/0x400 [ 287.735108][ C0] bio_split_rw+0x622/0x820 [ 287.735149][ C0] ? bvec_split_segs+0x320/0x320 [ 287.735187][ C0] ? update_io_ticks+0x125/0x250 [ 287.735214][ C0] ? submit_bio+0x140/0x140 [ 287.735241][ C0] __bio_split_to_limits+0x237/0x9b0 [ 287.735282][ C0] blk_mq_submit_bio+0x233/0x1e30 [ 287.735314][ C0] ? blk_mq_flush_plug_list+0x80/0x80 [ 287.735341][ C0] ? find_held_lock+0x2d/0x110 [ 287.735375][ C0] ? reacquire_held_locks+0x4b0/0x4b0 [ 287.735415][ C0] __submit_bio+0xfd/0x310 [ 287.735439][ C0] ? __bio_queue_enter+0x6f0/0x6f0 [ 287.735463][ C0] ? read_tsc+0x9/0x20 [ 287.735486][ C0] ? ktime_get+0x2a4/0x490 [ 287.735524][ C0] submit_bio_noacct_nocheck+0x847/0xba0 [ 287.735554][ C0] ? should_fail_request+0x80/0x80 [ 287.735580][ C0] ? bio_init+0x377/0x560 [ 287.735608][ C0] ? preempt_count_sub+0x150/0x150 [ 287.735647][ C0] ? bio_alloc_bioset+0x2fa/0x8b0 [ 287.735681][ C0] submit_bio_noacct+0x879/0x1b10 [ 287.735718][ C0] blk_next_bio+0x57/0x70 [ 287.735750][ C0] __blkdev_issue_zero_pages+0x1d4/0x350 [ 287.735793][ C0] blkdev_issue_zeroout+0x3fd/0x460 [ 287.735833][ C0] ? bit_wait_io_timeout+0x160/0x160 [ 287.735866][ C0] ? __blkdev_issue_zeroout+0x160/0x160 [ 287.735916][ C0] blkdev_fallocate+0x334/0x3e0 [ 287.735948][ C0] ? file_to_blk_mode+0x130/0x130 [ 287.735976][ C0] vfs_fallocate+0x46c/0xe80 [ 287.736017][ C0] __x64_sys_fallocate+0xd5/0x140 [ 287.736058][ C0] do_syscall_64+0x38/0xb0 [ 287.736083][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 287.736112][ C0] RIP: 0033:0x7f4c7877cb29 [ 287.736130][ C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 287.736152][ C0] RSP: 002b:00007ffcccfda2e8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.736174][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f4c7877cb29 [ 287.736190][ C0] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.736205][ C0] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.736221][ C0] R10: 7fffffffffffffff R11: 0000000000000246 R12: 0000000000000001 [ 287.736236][ C0] R13: 00007ffcccfda508 R14: 00007ffcccfda310 R15: 00007ffcccfda300 [ 287.736261][ C0] [ 287.736269][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 2.910 msecs [ 287.736482][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 288.326152][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.6.0-rc2-syzkaller-00018-g2cf0f7156238 #0 [ 288.335974][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/04/2023 [ 288.346057][ T29] Call Trace: [ 288.349348][ T29] [ 288.352286][ T29] dump_stack_lvl+0xd9/0x1b0 [ 288.356903][ T29] panic+0x6a6/0x750 [ 288.360814][ T29] ? panic_smp_self_stop+0xa0/0xa0 [ 288.365952][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 288.371186][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 288.376608][ T29] ? watchdog+0xd3e/0x1210 [ 288.381036][ T29] watchdog+0xd4f/0x1210 [ 288.385285][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 288.391271][ T29] ? lockdep_hardirqs_on+0x7d/0x100 [ 288.396508][ T29] ? __kthread_parkme+0x14b/0x220 [ 288.401545][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 288.407532][ T29] kthread+0x33c/0x440 [ 288.411637][ T29] ? _raw_spin_unlock_irq+0x23/0x50 [ 288.416864][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 288.422522][ T29] ret_from_fork+0x45/0x80 [ 288.426955][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 288.432610][ T29] ret_from_fork_asm+0x11/0x20 [ 288.437401][ T29] [ 288.440773][ T29] Kernel Offset: disabled [ 288.445106][ T29] Rebooting in 86400 seconds..