./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor113047879 <...> Warning: Permanently added '10.128.0.78' (ED25519) to the list of known hosts. execve("./syz-executor113047879", ["./syz-executor113047879"], 0x7ffe1101fb20 /* 10 vars */) = 0 brk(NULL) = 0x5555657e9000 brk(0x5555657e9d00) = 0x5555657e9d00 arch_prctl(ARCH_SET_FS, 0x5555657e9380) = 0 set_tid_address(0x5555657e9650) = 5838 set_robust_list(0x5555657e9660, 24) = 0 rseq(0x5555657e9ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor113047879", 4096) = 27 getrandom("\x14\x94\xee\x26\x85\x84\x47\x46", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x5555657e9d00 brk(0x55556580ad00) = 0x55556580ad00 brk(0x55556580b000) = 0x55556580b000 mprotect(0x7f10d9f7a000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5839 attached [pid 5839] set_robust_list(0x5555657e9660, 24) = 0 [pid 5838] <... clone resumed>, child_tidptr=0x5555657e9650) = 5839 [pid 5839] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5840 attached [pid 5838] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5841 attached [pid 5840] set_robust_list(0x5555657e9660, 24 [pid 5838] <... clone resumed>, child_tidptr=0x5555657e9650) = 5841 [pid 5841] set_robust_list(0x5555657e9660, 24 [pid 5840] <... set_robust_list resumed>) = 0 [pid 5839] <... clone resumed>, child_tidptr=0x5555657e9650) = 5840 [pid 5838] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5840] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5841] <... set_robust_list resumed>) = 0 [pid 5840] <... prctl resumed>) = 0 [pid 5841] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5840] setpgid(0, 0./strace-static-x86_64: Process 5842 attached ) = 0 ./strace-static-x86_64: Process 5843 attached [pid 5838] <... clone resumed>, child_tidptr=0x5555657e9650) = 5842 [pid 5842] set_robust_list(0x5555657e9660, 24 [pid 5840] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5838] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5843] set_robust_list(0x5555657e9660, 24 [pid 5842] <... set_robust_list resumed>) = 0 [pid 5841] <... clone resumed>, child_tidptr=0x5555657e9650) = 5843 [pid 5842] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5840] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5845 attached ./strace-static-x86_64: Process 5844 attached [pid 5843] <... set_robust_list resumed>) = 0 [pid 5838] <... clone resumed>, child_tidptr=0x5555657e9650) = 5845 [pid 5838] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [ 258.897577][ T29] audit: type=1400 audit(1735454594.016:88): avc: denied { execmem } for pid=5838 comm="syz-executor113" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [pid 5844] set_robust_list(0x5555657e9660, 24) = 0 ./strace-static-x86_64: Process 5846 attached [pid 5845] set_robust_list(0x5555657e9660, 24 [pid 5844] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5843] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5842] <... clone resumed>, child_tidptr=0x5555657e9650) = 5844 [pid 5840] write(3, "1000", 4 [pid 5838] <... clone resumed>, child_tidptr=0x5555657e9650) = 5846 [pid 5844] <... prctl resumed>) = 0 [pid 5840] <... write resumed>) = 4 [pid 5846] set_robust_list(0x5555657e9660, 24 [pid 5845] <... set_robust_list resumed>) = 0 [pid 5844] setpgid(0, 0 [pid 5843] <... prctl resumed>) = 0 [pid 5840] close(3 [pid 5844] <... setpgid resumed>) = 0 [pid 5844] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5840] <... close resumed>) = 0 [pid 5846] <... set_robust_list resumed>) = 0 executing program [pid 5845] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5843] setpgid(0, 0 [pid 5840] write(1, "executing program\n", 18 [pid 5846] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5844] <... openat resumed>) = 3 [pid 5843] <... setpgid resumed>) = 0 [pid 5840] <... write resumed>) = 18 [pid 5844] write(3, "1000", 4./strace-static-x86_64: Process 5848 attached ./strace-static-x86_64: Process 5847 attached ) = 4 [pid 5843] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5840] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5848] set_robust_list(0x5555657e9660, 24 [pid 5846] <... clone resumed>, child_tidptr=0x5555657e9650) = 5848 [pid 5844] close(3 [pid 5848] <... set_robust_list resumed>) = 0 [pid 5847] set_robust_list(0x5555657e9660, 24 [pid 5845] <... clone resumed>, child_tidptr=0x5555657e9650) = 5847 [pid 5844] <... close resumed>) = 0 [pid 5843] <... openat resumed>) = 3 [pid 5840] <... openat resumed>) = 3 [pid 5847] <... set_robust_list resumed>) = 0 [pid 5847] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5843] write(3, "1000", 4 [pid 5847] setpgid(0, 0 [pid 5843] <... write resumed>) = 4 [pid 5847] <... setpgid resumed>) = 0 [pid 5843] close(3 [pid 5840] dup(3 [pid 5847] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5843] <... close resumed>) = 0 executing program [pid 5843] write(1, "executing program\n", 18 [pid 5840] <... dup resumed>) = 4 [pid 5843] <... write resumed>) = 18 [pid 5840] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5843] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5847] <... openat resumed>) = 3 [pid 5847] write(3, "1000", 4) = 4 [pid 5843] <... openat resumed>) = 3 [pid 5847] close(3 [pid 5843] dup(3executing program [pid 5847] <... close resumed>) = 0 [pid 5843] <... dup resumed>) = 4 [pid 5847] write(1, "executing program\n", 18 [pid 5843] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5847] <... write resumed>) = 18 [pid 5847] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3 [pid 5847] dup(3) = 4 [pid 5847] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5848] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5844] write(1, "executing program\n", 18executing program [pid 5848] <... prctl resumed>) = 0 [pid 5844] <... write resumed>) = 18 [pid 5848] setpgid(0, 0 [pid 5844] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5848] <... setpgid resumed>) = 0 [pid 5848] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5844] <... openat resumed>) = 3 [pid 5844] dup(3 [pid 5848] <... openat resumed>) = 3 [pid 5844] <... dup resumed>) = 4 [pid 5844] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5848] write(3, "1000", 4) = 4 [pid 5848] close(3) = 0 executing program [pid 5848] write(1, "executing program\n", 18) = 18 [pid 5848] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3 [pid 5848] dup(3) = 4 [ 258.973350][ T29] audit: type=1400 audit(1735454594.096:89): avc: denied { read write } for pid=5840 comm="syz-executor113" name="nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [ 258.997069][ T29] audit: type=1400 audit(1735454594.096:90): avc: denied { open } for pid=5840 comm="syz-executor113" path="/dev/nullb0" dev="devtmpfs" ino=696 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=blk_file permissive=1 [pid 5848] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5841] kill(-5843, SIGKILL [pid 5839] kill(-5840, SIGKILL [pid 5841] <... kill resumed>) = 0 [pid 5839] <... kill resumed>) = 0 [pid 5841] kill(5843, SIGKILL [pid 5839] kill(5840, SIGKILL [pid 5841] <... kill resumed>) = 0 [pid 5839] <... kill resumed>) = 0 [pid 5842] kill(-5844, SIGKILL) = 0 [pid 5842] kill(5844, SIGKILL [pid 5846] kill(-5848, SIGKILL [pid 5842] <... kill resumed>) = 0 [pid 5846] <... kill resumed>) = 0 [pid 5846] kill(5848, SIGKILL) = 0 [pid 5845] kill(-5847, SIGKILL) = 0 [pid 5845] kill(5847, SIGKILL) = 0 [pid 5841] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5839] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5845] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5841] <... openat resumed>) = 3 [pid 5841] newfstatat(3, "", [pid 5839] <... openat resumed>) = 3 [pid 5841] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5841] getdents64(3, 0x5555657ea6f0 /* 2 entries */, 32768) = 48 [pid 5839] newfstatat(3, "", [pid 5841] getdents64(3, 0x5555657ea6f0 /* 0 entries */, 32768) = 0 [pid 5841] close(3) = 0 [pid 5845] <... openat resumed>) = 3 [pid 5845] newfstatat(3, "", [pid 5839] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5842] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5845] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5839] getdents64(3, 0x5555657ea6f0 /* 2 entries */, 32768) = 48 [pid 5839] getdents64(3, 0x5555657ea6f0 /* 0 entries */, 32768) = 0 [pid 5839] close(3) = 0 [pid 5846] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5845] getdents64(3, [pid 5842] <... openat resumed>) = 3 [pid 5846] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5846] getdents64(3, 0x5555657ea6f0 /* 2 entries */, 32768) = 48 [pid 5846] getdents64(3, [pid 5845] <... getdents64 resumed>0x5555657ea6f0 /* 2 entries */, 32768) = 48 [pid 5846] <... getdents64 resumed>0x5555657ea6f0 /* 0 entries */, 32768) = 0 [pid 5845] getdents64(3, [pid 5846] close(3 [pid 5845] <... getdents64 resumed>0x5555657ea6f0 /* 0 entries */, 32768) = 0 [pid 5846] <... close resumed>) = 0 [pid 5845] close(3 [pid 5842] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5842] getdents64(3, [pid 5845] <... close resumed>) = 0 [pid 5842] <... getdents64 resumed>0x5555657ea6f0 /* 2 entries */, 32768) = 48 [pid 5842] getdents64(3, 0x5555657ea6f0 /* 0 entries */, 32768) = 0 [pid 5842] close(3) = 0 [pid 5840] <... fallocate resumed>) = ? [pid 5840] +++ killed by SIGKILL +++ [pid 5839] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5840, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=7899 /* 78.99 s */} --- [pid 5839] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5855 attached [pid 5855] set_robust_list(0x5555657e9660, 24) = 0 [pid 5855] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5855] setpgid(0, 0) = 0 [pid 5855] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5839] <... clone resumed>, child_tidptr=0x5555657e9650) = 5855 [pid 5855] <... openat resumed>) = 3 [pid 5855] write(3, "1000", 4executing program ) = 4 [pid 5855] close(3) = 0 [pid 5855] write(1, "executing program\n", 18) = 18 [pid 5855] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3 [pid 5855] dup(3) = 4 [pid 5855] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5839] kill(-5855, SIGKILL) = 0 [pid 5839] kill(5855, SIGKILL) = 0 [pid 5839] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5839] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5839] getdents64(3, 0x5555657ea6f0 /* 2 entries */, 32768) = 48 [pid 5839] getdents64(3, 0x5555657ea6f0 /* 0 entries */, 32768) = 0 [pid 5839] close(3) = 0 [ 429.470479][ T30] INFO: task syz-executor113:5844 blocked for more than 143 seconds. [ 429.481630][ T30] Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 429.490516][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 429.499846][ T30] task:syz-executor113 state:D stack:27712 pid:5844 tgid:5844 ppid:5842 flags:0x00004006 [ 429.510735][ T30] Call Trace: [ 429.514037][ T30] [ 429.516989][ T30] __schedule+0xe58/0x5ad0 [ 429.522084][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 429.527942][ T30] ? mark_lock+0xb5/0xc60 [ 429.533006][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 429.538240][ T30] ? __pfx___schedule+0x10/0x10 [ 429.543153][ T30] ? schedule+0x298/0x350 [ 429.547506][ T30] ? __pfx_lock_release+0x10/0x10 [ 429.552697][ T30] ? lock_acquire+0x2f/0xb0 [ 429.557846][ T30] ? schedule+0x1fd/0x350 [ 429.562871][ T30] schedule+0xe7/0x350 [ 429.567573][ T30] schedule_preempt_disabled+0x13/0x30 [ 429.574118][ T30] rwsem_down_write_slowpath+0x539/0x12a0 [ 429.580502][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 429.587309][ T30] ? blkdev_fallocate+0x1da/0x390 [ 429.593150][ T30] ? lock_acquire+0x2f/0xb0 [ 429.598275][ T30] ? blkdev_fallocate+0x1da/0x390 [ 429.603355][ T30] down_write+0x1d8/0x200 [ 429.607711][ T30] ? __pfx_down_write+0x10/0x10 [ 429.612673][ T30] ? inode_security+0x101/0x130 [ 429.617547][ T30] blkdev_fallocate+0x1da/0x390 [ 429.623099][ T30] ? __pfx_blkdev_fallocate+0x10/0x10 [ 429.629225][ T30] vfs_fallocate+0x459/0xf90 [ 429.634640][ T30] __x64_sys_fallocate+0xd5/0x150 [ 429.640424][ T30] do_syscall_64+0xcd/0x250 [ 429.645644][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 429.652402][ T30] RIP: 0033:0x7f10d9f07b29 [ 429.657489][ T30] RSP: 002b:00007fffdb739248 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 429.666527][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f10d9f07b29 [ 429.674684][ T30] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 429.682920][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 429.690978][ T30] R10: 0010000001002000 R11: 0000000000000246 R12: 0000000000000001 [ 429.698965][ T30] R13: 00007fffdb739468 R14: 00007fffdb739270 R15: 00007fffdb739260 [ 429.707688][ T30] [ 429.711557][ T30] INFO: task syz-executor113:5847 blocked for more than 143 seconds. [ 429.721015][ T30] Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 429.729279][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 429.743677][ T30] task:syz-executor113 state:D stack:28368 pid:5847 tgid:5847 ppid:5845 flags:0x00004006 [ 429.754567][ T30] Call Trace: [ 429.757858][ T30] [ 429.761410][ T30] __schedule+0xe58/0x5ad0 [ 429.766442][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 429.771719][ T30] ? mark_lock+0xb5/0xc60 [ 429.776069][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 429.781320][ T30] ? __pfx___schedule+0x10/0x10 [ 429.786187][ T30] ? schedule+0x298/0x350 [ 429.790570][ T30] ? __pfx_lock_release+0x10/0x10 [ 429.796299][ T30] ? lock_acquire+0x2f/0xb0 [ 429.801560][ T30] ? schedule+0x1fd/0x350 [ 429.806547][ T30] schedule+0xe7/0x350 [ 429.810684][ T30] schedule_preempt_disabled+0x13/0x30 [ 429.816910][ T30] rwsem_down_write_slowpath+0x539/0x12a0 [ 429.823312][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 429.830146][ T30] ? blkdev_fallocate+0x1da/0x390 [ 429.835934][ T30] ? lock_acquire+0x2f/0xb0 [ 429.841171][ T30] ? blkdev_fallocate+0x1da/0x390 [ 429.846230][ T30] down_write+0x1d8/0x200 [ 429.850635][ T30] ? __pfx_down_write+0x10/0x10 [ 429.855513][ T30] ? inode_security+0x101/0x130 [ 429.860425][ T30] blkdev_fallocate+0x1da/0x390 [ 429.865300][ T30] ? __pfx_blkdev_fallocate+0x10/0x10 [ 429.871337][ T30] vfs_fallocate+0x459/0xf90 [ 429.876605][ T30] __x64_sys_fallocate+0xd5/0x150 [ 429.882371][ T30] do_syscall_64+0xcd/0x250 [ 429.886907][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 429.893626][ T30] RIP: 0033:0x7f10d9f07b29 [ 429.898794][ T30] RSP: 002b:00007fffdb739248 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 429.907289][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f10d9f07b29 [ 429.915972][ T30] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 429.924591][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 429.933305][ T30] R10: 0010000001002000 R11: 0000000000000246 R12: 0000000000000001 [ 429.941329][ T30] R13: 00007fffdb739468 R14: 00007fffdb739270 R15: 00007fffdb739260 [ 429.949340][ T30] [ 429.952452][ T30] INFO: task syz-executor113:5848 blocked for more than 143 seconds. [ 429.961326][ T30] Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 429.969719][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 429.979145][ T30] task:syz-executor113 state:D stack:28368 pid:5848 tgid:5848 ppid:5846 flags:0x00004006 [ 429.990118][ T30] Call Trace: [ 429.994006][ T30] [ 429.997519][ T30] __schedule+0xe58/0x5ad0 [ 430.002569][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 430.008468][ T30] ? mark_lock+0xb5/0xc60 [ 430.012878][ T30] ? __pfx___lock_acquire+0x10/0x10 [ 430.018116][ T30] ? __pfx___schedule+0x10/0x10 [ 430.023047][ T30] ? schedule+0x298/0x350 [ 430.027407][ T30] ? __pfx_lock_release+0x10/0x10 [ 430.032500][ T30] ? lock_acquire+0x2f/0xb0 [ 430.037032][ T30] ? schedule+0x1fd/0x350 [ 430.041433][ T30] schedule+0xe7/0x350 [ 430.045526][ T30] schedule_preempt_disabled+0x13/0x30 [ 430.051041][ T30] rwsem_down_write_slowpath+0x539/0x12a0 [ 430.056799][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 430.063057][ T30] ? blkdev_fallocate+0x1da/0x390 [ 430.068104][ T30] ? lock_acquire+0x2f/0xb0 [ 430.072740][ T30] ? blkdev_fallocate+0x1da/0x390 [ 430.077788][ T30] down_write+0x1d8/0x200 [ 430.098152][ T30] ? __pfx_down_write+0x10/0x10 [ 430.103141][ T30] ? inode_security+0x101/0x130 [ 430.108013][ T30] blkdev_fallocate+0x1da/0x390 [ 430.124130][ T30] ? __pfx_blkdev_fallocate+0x10/0x10 [ 430.132787][ T30] vfs_fallocate+0x459/0xf90 [ 430.137454][ T30] __x64_sys_fallocate+0xd5/0x150 [ 430.142616][ T30] do_syscall_64+0xcd/0x250 [ 430.147190][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.153197][ T30] RIP: 0033:0x7f10d9f07b29 [ 430.170846][ T30] RSP: 002b:00007fffdb739248 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 430.179321][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f10d9f07b29 [ 430.188755][ T30] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 430.201758][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 430.209970][ T30] R10: 0010000001002000 R11: 0000000000000246 R12: 0000000000000001 [ 430.218620][ T30] R13: 00007fffdb739468 R14: 00007fffdb739270 R15: 00007fffdb739260 [ 430.227406][ T30] [ 430.231182][ T30] [ 430.231182][ T30] Showing all locks held in the system: [ 430.279578][ T30] 1 lock held by ksoftirqd/0/16: [ 430.284574][ T30] 1 lock held by khungtaskd/30: [ 430.289439][ T30] #0: ffffffff8e1bb900 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x7f/0x390 [ 430.343955][ T30] 1 lock held by klogd/5179: [ 430.349536][ T30] 2 locks held by getty/5570: [ 430.354226][ T30] #0: ffff88823be780a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 430.369051][ T30] #1: ffffc90002fde2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0xfba/0x1480 [ 430.379918][ T30] 2 locks held by syz-executor113/5843: [ 430.386082][ T30] 1 lock held by syz-executor113/5844: [ 430.392157][ T30] #0: ffff888148cdabc0 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x1da/0x390 [ 430.403481][ T30] 1 lock held by syz-executor113/5847: [ 430.408948][ T30] #0: ffff888148cdabc0 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x1da/0x390 [ 430.419634][ T30] 1 lock held by syz-executor113/5848: [ 430.425098][ T30] #0: ffff888148cdabc0 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x1da/0x390 [ 430.436379][ T30] 1 lock held by syz-executor113/5855: [ 430.442495][ T30] #0: ffff888148cdabc0 (mapping.invalidate_lock#2){++++}-{4:4}, at: blkdev_fallocate+0x1da/0x390 [ 430.453898][ T30] [ 430.456872][ T30] ============================================= [ 430.456872][ T30] [ 430.466103][ T30] NMI backtrace for cpu 0 [ 430.470444][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 430.480959][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 430.491037][ T30] Call Trace: [ 430.494334][ T30] [ 430.497285][ T30] dump_stack_lvl+0x116/0x1f0 [ 430.501995][ T30] nmi_cpu_backtrace+0x27b/0x390 [ 430.506950][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 430.512951][ T30] nmi_trigger_cpumask_backtrace+0x29c/0x300 [ 430.518956][ T30] watchdog+0xf14/0x1240 [ 430.523229][ T30] ? __pfx_watchdog+0x10/0x10 [ 430.527927][ T30] ? lockdep_hardirqs_on+0x7c/0x110 [ 430.533152][ T30] ? __kthread_parkme+0x148/0x220 [ 430.538201][ T30] ? __pfx_watchdog+0x10/0x10 [ 430.542903][ T30] kthread+0x2c1/0x3a0 [ 430.546994][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 430.552213][ T30] ? __pfx_kthread+0x10/0x10 [ 430.556824][ T30] ret_from_fork+0x45/0x80 [ 430.561254][ T30] ? __pfx_kthread+0x10/0x10 [ 430.565862][ T30] ret_from_fork_asm+0x1a/0x30 [ 430.570648][ T30] [ 430.573760][ T30] Sending NMI from CPU 0 to CPUs 1: [ 430.578968][ C1] NMI backtrace for cpu 1 [ 430.578978][ C1] CPU: 1 UID: 0 PID: 35 Comm: kworker/u8:2 Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 430.578994][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 430.579002][ C1] Workqueue: events_unbound toggle_allocation_gate [ 430.579023][ C1] RIP: 0010:hlock_class+0x58/0x130 [ 430.579044][ C1] Code: 81 e3 ff 1f 0f b7 db be 08 00 00 00 48 89 d8 48 c1 e8 06 48 8d 3c c5 c0 1c e5 96 e8 f2 f7 86 00 48 0f a3 1d 7a 4b 6f 15 73 13 <48> 69 c3 c8 00 00 00 5b 48 05 e0 20 e5 96 c3 cc cc cc cc 48 c7 c0 [ 430.579056][ C1] RSP: 0018:ffffc90000ab77d0 EFLAGS: 00000047 [ 430.579067][ C1] RAX: 0000000000000001 RBX: 00000000000000cb RCX: ffffffff8175d13e [ 430.579076][ C1] RDX: fffffbfff2dca39c RSI: 0000000000000008 RDI: ffffffff96e51cd8 [ 430.579085][ C1] RBP: ffffc90000ab7918 R08: 0000000000000000 R09: fffffbfff2dca39b [ 430.579093][ C1] R10: ffffffff96e51cdf R11: 0000000000000006 R12: ffff88801dada440 [ 430.579102][ C1] R13: 0000000000000040 R14: 0000000000000006 R15: 1ffff92000156f02 [ 430.579111][ C1] FS: 0000000000000000(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 430.579126][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 430.579135][ C1] CR2: 00007f8f1d19b580 CR3: 000000000df7e000 CR4: 00000000003526f0 [ 430.579144][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 430.579152][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 430.579160][ C1] Call Trace: [ 430.579165][ C1] [ 430.579170][ C1] ? nmi_cpu_backtrace+0x1d8/0x390 [ 430.579185][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 430.579199][ C1] ? nmi_handle+0x1ac/0x5d0 [ 430.579214][ C1] ? hlock_class+0x58/0x130 [ 430.579231][ C1] ? default_do_nmi+0x6a/0x160 [ 430.579244][ C1] ? exc_nmi+0x170/0x1e0 [ 430.579256][ C1] ? end_repeat_nmi+0xf/0x53 [ 430.579277][ C1] ? hlock_class+0x4e/0x130 [ 430.579294][ C1] ? hlock_class+0x58/0x130 [ 430.579311][ C1] ? hlock_class+0x58/0x130 [ 430.579328][ C1] ? hlock_class+0x58/0x130 [ 430.579345][ C1] [ 430.579349][ C1] [ 430.579354][ C1] mark_lock+0xb5/0xc60 [ 430.579368][ C1] ? rcu_is_watching+0x12/0xc0 [ 430.579386][ C1] ? do_raw_spin_lock+0x12d/0x2c0 [ 430.579402][ C1] ? __pfx_mark_lock+0x10/0x10 [ 430.579416][ C1] ? lock_acquire+0x2f/0xb0 [ 430.579429][ C1] ? __page_table_check_pte_clear+0xb1/0x580 [ 430.579445][ C1] ? __pfx___page_table_check_pte_clear+0x10/0x10 [ 430.579462][ C1] ? __pte_offset_map_lock+0x156/0x300 [ 430.579488][ C1] ? rcu_is_watching+0x12/0xc0 [ 430.579508][ C1] mark_held_locks+0x9f/0xe0 [ 430.579523][ C1] lockdep_hardirqs_on_prepare+0x27a/0x420 [ 430.579537][ C1] ? kmem_cache_alloc_lru_noprof+0x8c/0x3d0 [ 430.579552][ C1] trace_hardirqs_on+0x36/0x40 [ 430.579568][ C1] __text_poke+0x8d5/0xca0 [ 430.579584][ C1] ? __pfx_text_poke_memcpy+0x10/0x10 [ 430.579602][ C1] ? __pfx___text_poke+0x10/0x10 [ 430.579618][ C1] ? kmem_cache_alloc_lru_noprof+0x8c/0x3d0 [ 430.579635][ C1] text_poke_bp_batch+0x3e0/0x760 [ 430.579652][ C1] ? kmem_cache_alloc_lru_noprof+0x8c/0x3d0 [ 430.579668][ C1] ? __pfx_text_poke_bp_batch+0x10/0x10 [ 430.579684][ C1] ? __jump_label_patch+0x1db/0x400 [ 430.579703][ C1] ? arch_jump_label_transform_queue+0xc0/0x120 [ 430.579725][ C1] text_poke_finish+0x30/0x40 [ 430.579741][ C1] arch_jump_label_transform_apply+0x1c/0x30 [ 430.579759][ C1] jump_label_update+0x1d7/0x400 [ 430.579779][ C1] static_key_disable_cpuslocked+0x158/0x1c0 [ 430.579799][ C1] static_key_disable+0x1a/0x20 [ 430.579823][ C1] toggle_allocation_gate+0x147/0x260 [ 430.579838][ C1] ? __pfx_toggle_allocation_gate+0x10/0x10 [ 430.579853][ C1] ? trace_lock_acquire+0x14e/0x1f0 [ 430.579871][ C1] ? __pfx_autoremove_wake_function+0x10/0x10 [ 430.579886][ C1] ? lock_acquire+0x2f/0xb0 [ 430.579899][ C1] ? process_one_work+0x921/0x1ba0 [ 430.579916][ C1] process_one_work+0x9c5/0x1ba0 [ 430.579933][ C1] ? __pfx_lock_acquire.part.0+0x10/0x10 [ 430.579947][ C1] ? __pfx_process_one_work+0x10/0x10 [ 430.579961][ C1] ? rcu_is_watching+0x12/0xc0 [ 430.579980][ C1] ? assign_work+0x1a0/0x250 [ 430.579994][ C1] worker_thread+0x6c8/0xf00 [ 430.580012][ C1] ? __pfx_worker_thread+0x10/0x10 [ 430.580025][ C1] kthread+0x2c1/0x3a0 [ 430.580042][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 430.580057][ C1] ? __pfx_kthread+0x10/0x10 [ 430.580074][ C1] ret_from_fork+0x45/0x80 [ 430.580087][ C1] ? __pfx_kthread+0x10/0x10 [ 430.580103][ C1] ret_from_fork_asm+0x1a/0x30 [ 430.580126][ C1] [ 430.580131][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.164 msecs [ 430.581523][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 430.581533][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc4-syzkaller-00078-g059dd502b263 #0 [ 430.581551][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 430.581559][ T30] Call Trace: [ 430.581564][ T30] [ 430.581570][ T30] dump_stack_lvl+0x3d/0x1f0 [ 430.581593][ T30] panic+0x71d/0x800 [ 430.581617][ T30] ? __pfx_panic+0x10/0x10 [ 430.581639][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 430.581659][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 430.581674][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 430.581691][ T30] ? watchdog+0xd7e/0x1240 [ 430.581710][ T30] ? watchdog+0xd71/0x1240 [ 430.581731][ T30] watchdog+0xd8f/0x1240 [ 430.581753][ T30] ? __pfx_watchdog+0x10/0x10 [ 430.581771][ T30] ? lockdep_hardirqs_on+0x7c/0x110 [ 430.581791][ T30] ? __kthread_parkme+0x148/0x220 [ 430.581813][ T30] ? __pfx_watchdog+0x10/0x10 [ 430.581832][ T30] kthread+0x2c1/0x3a0 [ 430.581850][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 430.581867][ T30] ? __pfx_kthread+0x10/0x10 [ 430.581888][ T30] ret_from_fork+0x45/0x80 [ 430.581902][ T30] ? __pfx_kthread+0x10/0x10 [ 430.581922][ T30] ret_from_fork_asm+0x1a/0x30 [ 430.581952][ T30] [ 431.157150][ T30] Kernel Offset: disabled [ 431.161452][ T30] Rebooting in 86400 seconds..