./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1584444615 <...> Warning: Permanently added '10.128.0.160' (ED25519) to the list of known hosts. execve("./syz-executor1584444615", ["./syz-executor1584444615"], 0x7ffd17f887d0 /* 10 vars */) = 0 brk(NULL) = 0x555593d85000 brk(0x555593d85d00) = 0x555593d85d00 arch_prctl(ARCH_SET_FS, 0x555593d85380) = 0 set_tid_address(0x555593d85650) = 5861 set_robust_list(0x555593d85660, 24) = 0 rseq(0x555593d85ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1584444615", 4096) = 28 getrandom("\x04\xb4\x94\xbb\xca\x5b\xc7\x7d", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555593d85d00 brk(0x555593da6d00) = 0x555593da6d00 brk(0x555593da7000) = 0x555593da7000 mprotect(0x7f9775cf5000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555593d85650) = 5862 ./strace-static-x86_64: Process 5862 attached [pid 5861] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5862] set_robust_list(0x555593d85660, 24) = 0 ./strace-static-x86_64: Process 5863 attached [pid 5863] set_robust_list(0x555593d85660, 24) = 0 [pid 5862] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5861] <... clone resumed>, child_tidptr=0x555593d85650) = 5863 [pid 5863] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5864 attached [pid 5861] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5864] set_robust_list(0x555593d85660, 24 [pid 5862] <... clone resumed>, child_tidptr=0x555593d85650) = 5864 ./strace-static-x86_64: Process 5865 attached [pid 5864] <... set_robust_list resumed>) = 0 [pid 5863] <... clone resumed>, child_tidptr=0x555593d85650) = 5865 ./strace-static-x86_64: Process 5866 attached [pid 5861] <... clone resumed>, child_tidptr=0x555593d85650) = 5866 [pid 5865] set_robust_list(0x555593d85660, 24 [pid 5864] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5865] <... set_robust_list resumed>) = 0 [pid 5865] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5864] <... prctl resumed>) = 0 [pid 5865] <... prctl resumed>) = 0 [pid 5864] setpgid(0, 0 [pid 5865] setpgid(0, 0 [pid 5861] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5866] set_robust_list(0x555593d85660, 24 [pid 5864] <... setpgid resumed>) = 0 [pid 5866] <... set_robust_list resumed>) = 0 [pid 5866] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5865] <... setpgid resumed>) = 0 [pid 5864] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5867 attached [pid 5867] set_robust_list(0x555593d85660, 24 [pid 5865] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5868 attached [pid 5861] <... clone resumed>, child_tidptr=0x555593d85650) = 5867 [pid 5867] <... set_robust_list resumed>) = 0 [pid 5864] <... openat resumed>) = 3 [pid 5867] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5861] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5868] set_robust_list(0x555593d85660, 24 [pid 5865] <... openat resumed>) = 3 [pid 5864] write(3, "1000", 4./strace-static-x86_64: Process 5869 attached [pid 5866] <... clone resumed>, child_tidptr=0x555593d85650) = 5868 [pid 5868] <... set_robust_list resumed>) = 0 [pid 5865] write(3, "1000", 4 [pid 5864] <... write resumed>) = 4 ./strace-static-x86_64: Process 5870 attached [pid 5861] <... clone resumed>, child_tidptr=0x555593d85650) = 5870 [pid 5869] set_robust_list(0x555593d85660, 24 [pid 5868] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5867] <... clone resumed>, child_tidptr=0x555593d85650) = 5869 [pid 5865] <... write resumed>) = 4 [pid 5864] close(3 [pid 5870] set_robust_list(0x555593d85660, 24 [pid 5869] <... set_robust_list resumed>) = 0 [pid 5868] <... prctl resumed>) = 0 [pid 5865] close(3 [pid 5870] <... set_robust_list resumed>) = 0 [pid 5869] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5864] <... close resumed>) = 0 [pid 5865] <... close resumed>) = 0 [pid 5869] <... prctl resumed>) = 0 [pid 5870] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5865] write(1, "executing program\n", 18 [pid 5864] write(1, "executing program\n", 18executing program executing program [pid 5868] setpgid(0, 0 [pid 5865] <... write resumed>) = 18 [pid 5864] <... write resumed>) = 18 [pid 5869] setpgid(0, 0) = 0 [pid 5869] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5868] <... setpgid resumed>) = 0 [pid 5865] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5864] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5869] <... openat resumed>) = 3 ./strace-static-x86_64: Process 5871 attached [pid 5868] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5865] <... openat resumed>) = 3 [pid 5864] <... openat resumed>) = 3 [pid 5871] set_robust_list(0x555593d85660, 24 [pid 5870] <... clone resumed>, child_tidptr=0x555593d85650) = 5871 [pid 5869] write(3, "1000", 4 [pid 5871] <... set_robust_list resumed>) = 0 [pid 5869] <... write resumed>) = 4 [pid 5865] dup(3 [pid 5871] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5869] close(3 [pid 5865] <... dup resumed>) = 4 [pid 5864] dup(3 [pid 5871] <... prctl resumed>) = 0 [pid 5869] <... close resumed>) = 0 [pid 5868] <... openat resumed>) = 3 [pid 5865] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5864] <... dup resumed>) = 4 [pid 5871] setpgid(0, 0 [pid 5869] write(1, "executing program\n", 18 [pid 5868] write(3, "1000", 4 [pid 5864] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496executing program executing program [pid 5868] <... write resumed>) = 4 [pid 5868] close(3) = 0 [pid 5868] write(1, "executing program\n", 18) = 18 [pid 5868] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5869] <... write resumed>) = 18 [pid 5871] <... setpgid resumed>) = 0 [pid 5868] <... openat resumed>) = 3 [pid 5868] dup(3) = 4 [pid 5871] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5868] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5869] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC) = 3 [pid 5871] <... openat resumed>) = 3 [pid 5869] dup(3 [pid 5871] write(3, "1000", 4 [pid 5869] <... dup resumed>) = 4 [pid 5871] <... write resumed>) = 4 [pid 5869] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5871] close(3) = 0 [pid 5871] write(1, "executing program\n", 18executing program ) = 18 [pid 5871] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC) = 3 [pid 5871] dup(3) = 4 [pid 5871] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5863] kill(-5865, SIGKILL [pid 5862] kill(-5864, SIGKILL [pid 5863] <... kill resumed>) = 0 [pid 5862] <... kill resumed>) = 0 [pid 5863] kill(5865, SIGKILL [pid 5862] kill(5864, SIGKILL [pid 5863] <... kill resumed>) = 0 [pid 5862] <... kill resumed>) = 0 [pid 5866] kill(-5868, SIGKILL) = 0 [pid 5866] kill(5868, SIGKILL) = 0 [pid 5870] kill(-5871, SIGKILL [pid 5867] kill(-5869, SIGKILL [pid 5870] <... kill resumed>) = 0 [pid 5867] <... kill resumed>) = 0 [pid 5867] kill(5869, SIGKILL) = 0 [pid 5870] kill(5871, SIGKILL) = 0 [pid 5862] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5863] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5866] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5862] <... openat resumed>) = 3 [pid 5862] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5862] getdents64(3, 0x555593d866f0 /* 2 entries */, 32768) = 48 [pid 5862] getdents64(3, 0x555593d866f0 /* 0 entries */, 32768) = 0 [pid 5862] close(3) = 0 [pid 5867] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5867] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5867] getdents64(3, 0x555593d866f0 /* 2 entries */, 32768) = 48 [pid 5867] getdents64(3, 0x555593d866f0 /* 0 entries */, 32768) = 0 [pid 5867] close(3) = 0 [pid 5866] <... openat resumed>) = 3 [pid 5863] <... openat resumed>) = 3 [pid 5870] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5870] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5870] getdents64(3, 0x555593d866f0 /* 2 entries */, 32768) = 48 [pid 5870] getdents64(3, 0x555593d866f0 /* 0 entries */, 32768) = 0 [pid 5870] close(3) = 0 [pid 5863] newfstatat(3, "", [pid 5866] newfstatat(3, "", [pid 5863] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5866] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5863] getdents64(3, 0x555593d866f0 /* 2 entries */, 32768) = 48 [pid 5863] getdents64(3, 0x555593d866f0 /* 0 entries */, 32768) = 0 [pid 5866] getdents64(3, [pid 5863] close(3 [pid 5866] <... getdents64 resumed>0x555593d866f0 /* 2 entries */, 32768) = 48 [pid 5863] <... close resumed>) = 0 [pid 5866] getdents64(3, 0x555593d866f0 /* 0 entries */, 32768) = 0 [pid 5866] close(3) = 0 [pid 5865] <... fallocate resumed>) = ? [pid 5865] +++ killed by SIGKILL +++ [pid 5863] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5865, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=10737 /* 107.37 s */} --- [pid 5863] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5878 attached , child_tidptr=0x555593d85650) = 5878 [pid 5878] set_robust_list(0x555593d85660, 24) = 0 [pid 5878] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5878] setpgid(0, 0) = 0 [pid 5878] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 executing program [pid 5878] write(3, "1000", 4) = 4 [pid 5878] close(3) = 0 [pid 5878] write(1, "executing program\n", 18) = 18 [pid 5878] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC) = 3 [pid 5878] dup(3) = 4 [pid 5878] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5863] kill(-5878, SIGKILL) = 0 [pid 5863] kill(5878, SIGKILL) = 0 [pid 5863] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5863] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5863] getdents64(3, 0x555593d866f0 /* 2 entries */, 32768) = 48 [pid 5863] getdents64(3, 0x555593d866f0 /* 0 entries */, 32768) = 0 [pid 5863] close(3) = 0 [ 286.390075][ T31] INFO: task syz-executor158:5868 blocked for more than 143 seconds. [ 286.398777][ T31] Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 [ 286.406085][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.414846][ T31] task:syz-executor158 state:D stack:28008 pid:5868 tgid:5868 ppid:5866 task_flags:0x400040 flags:0x00004006 [ 286.426946][ T31] Call Trace: [ 286.430289][ T31] [ 286.433252][ T31] __schedule+0x16f5/0x4d00 [ 286.437819][ T31] ? xfd_validate_state+0x6d/0x150 [ 286.443043][ T31] ? save_fpregs_to_fpstate+0xa3/0x210 [ 286.448587][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.453505][ T31] ? schedule+0x165/0x360 [ 286.457907][ T31] ? __pfx___schedule+0x10/0x10 [ 286.462850][ T31] ? schedule+0x91/0x360 [ 286.467141][ T31] schedule+0x165/0x360 [ 286.471419][ T31] schedule_preempt_disabled+0x13/0x30 [ 286.476930][ T31] rwsem_down_write_slowpath+0xbec/0x1030 [ 286.482736][ T31] ? rwsem_down_write_slowpath+0x7ec/0x1030 [ 286.489181][ T31] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 286.495369][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.500289][ T31] ? blkdev_fallocate+0x1d8/0x4b0 [ 286.505376][ T31] down_write+0x1ab/0x1f0 [ 286.509833][ T31] ? __pfx_down_write+0x10/0x10 [ 286.514711][ T31] ? end_current_label_crit_section+0x152/0x180 [ 286.521012][ T31] blkdev_fallocate+0x1d8/0x4b0 [ 286.525918][ T31] vfs_fallocate+0x6a0/0x830 [ 286.530646][ T31] ? __pfx_ptrace_notify+0x10/0x10 [ 286.535884][ T31] ? __pfx_vfs_fallocate+0x10/0x10 [ 286.541114][ T31] __x64_sys_fallocate+0xc0/0x110 [ 286.546164][ T31] do_syscall_64+0xfa/0x3b0 [ 286.557942][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 286.563191][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.577949][ T31] ? clear_bhb_loop+0x60/0xb0 [ 286.582695][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.598345][ T31] RIP: 0033:0x7f9775c82b29 [ 286.602825][ T31] RSP: 002b:00007ffe93cd6068 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.628023][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9775c82b29 [ 286.636085][ T31] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 286.658005][ T31] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 286.666059][ T31] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 286.687973][ T31] R13: 00007ffe93cd6288 R14: 00007ffe93cd6090 R15: 00007ffe93cd6080 [ 286.708427][ T31] [ 286.711519][ T31] INFO: task syz-executor158:5869 blocked for more than 143 seconds. [ 286.719665][ T31] Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 [ 286.726971][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.735694][ T31] task:syz-executor158 state:D stack:28008 pid:5869 tgid:5869 ppid:5867 task_flags:0x400040 flags:0x00004006 [ 286.747722][ T31] Call Trace: [ 286.751066][ T31] [ 286.754029][ T31] __schedule+0x16f5/0x4d00 [ 286.758609][ T31] ? kvm_sched_clock_read+0x11/0x20 [ 286.763843][ T31] ? sched_clock+0x3f/0x60 [ 286.768306][ T31] ? sched_clock_cpu+0x74/0x430 [ 286.773207][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.778116][ T31] ? schedule+0x165/0x360 [ 286.782477][ T31] ? __pfx___schedule+0x10/0x10 [ 286.787390][ T31] ? schedule+0x91/0x360 [ 286.791788][ T31] schedule+0x165/0x360 [ 286.796001][ T31] schedule_preempt_disabled+0x13/0x30 [ 286.801549][ T31] rwsem_down_write_slowpath+0xbec/0x1030 [ 286.807299][ T31] ? rwsem_down_write_slowpath+0x7ec/0x1030 [ 286.813454][ T31] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 286.820148][ T31] ? __lock_acquire+0xab9/0xd20 [ 286.825053][ T31] ? blkdev_fallocate+0x1d8/0x4b0 [ 286.830171][ T31] down_write+0x1ab/0x1f0 [ 286.834607][ T31] ? __pfx_down_write+0x10/0x10 [ 286.839559][ T31] ? end_current_label_crit_section+0x152/0x180 [ 286.845845][ T31] blkdev_fallocate+0x1d8/0x4b0 [ 286.850856][ T31] vfs_fallocate+0x6a0/0x830 [ 286.855483][ T31] ? __pfx_ptrace_notify+0x10/0x10 [ 286.860689][ T31] ? __pfx_vfs_fallocate+0x10/0x10 [ 286.865840][ T31] __x64_sys_fallocate+0xc0/0x110 [ 286.877965][ T31] do_syscall_64+0xfa/0x3b0 [ 286.882514][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 286.887744][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.907974][ T31] ? clear_bhb_loop+0x60/0xb0 [ 286.912721][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.928396][ T31] RIP: 0033:0x7f9775c82b29 [ 286.932871][ T31] RSP: 002b:00007ffe93cd6068 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.957968][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9775c82b29 [ 286.965993][ T31] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 286.987961][ T31] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 286.996000][ T31] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 287.004051][ T31] R13: 00007ffe93cd6288 R14: 00007ffe93cd6090 R15: 00007ffe93cd6080 [ 287.012100][ T31] [ 287.015168][ T31] INFO: task syz-executor158:5871 blocked for more than 143 seconds. [ 287.023317][ T31] Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 [ 287.030721][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.039733][ T31] task:syz-executor158 state:D stack:27384 pid:5871 tgid:5871 ppid:5870 task_flags:0x400040 flags:0x00004006 [ 287.051922][ T31] Call Trace: [ 287.055234][ T31] [ 287.058244][ T31] __schedule+0x16f5/0x4d00 [ 287.062789][ T31] ? kvm_sched_clock_read+0x11/0x20 [ 287.068054][ T31] ? sched_clock+0x3f/0x60 [ 287.072507][ T31] ? sched_clock_cpu+0x74/0x430 [ 287.077397][ T31] ? __lock_acquire+0xab9/0xd20 [ 287.082350][ T31] ? schedule+0x165/0x360 [ 287.086723][ T31] ? __pfx___schedule+0x10/0x10 [ 287.091650][ T31] ? schedule+0x91/0x360 [ 287.095950][ T31] schedule+0x165/0x360 [ 287.100191][ T31] schedule_preempt_disabled+0x13/0x30 [ 287.105686][ T31] rwsem_down_write_slowpath+0xbec/0x1030 [ 287.111524][ T31] ? rwsem_down_write_slowpath+0x7ec/0x1030 [ 287.117458][ T31] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 287.138000][ T31] ? __lock_acquire+0xab9/0xd20 [ 287.143024][ T31] ? blkdev_fallocate+0x1d8/0x4b0 [ 287.158210][ T31] down_write+0x1ab/0x1f0 [ 287.162719][ T31] ? __pfx_down_write+0x10/0x10 [ 287.177982][ T31] ? end_current_label_crit_section+0x152/0x180 [ 287.184305][ T31] blkdev_fallocate+0x1d8/0x4b0 [ 287.198070][ T31] vfs_fallocate+0x6a0/0x830 [ 287.202746][ T31] ? __pfx_ptrace_notify+0x10/0x10 [ 287.207902][ T31] ? __pfx_vfs_fallocate+0x10/0x10 [ 287.223187][ T31] __x64_sys_fallocate+0xc0/0x110 [ 287.238141][ T31] do_syscall_64+0xfa/0x3b0 [ 287.242711][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 287.258008][ T31] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.264121][ T31] ? clear_bhb_loop+0x60/0xb0 [ 287.278001][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.283938][ T31] RIP: 0033:0x7f9775c82b29 [ 287.298382][ T31] RSP: 002b:00007ffe93cd6068 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.306842][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9775c82b29 [ 287.337691][ T31] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 287.345774][ T31] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.366201][ T31] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 287.377960][ T31] R13: 00007ffe93cd6288 R14: 00007ffe93cd6090 R15: 00007ffe93cd6080 [ 287.386014][ T31] [ 287.405171][ T31] [ 287.405171][ T31] Showing all locks held in the system: [ 287.441520][ T31] 1 lock held by khungtaskd/31: [ 287.446423][ T31] #0: ffffffff8e13f140 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 [ 287.498023][ T31] 1 lock held by klogd/5194: [ 287.502701][ T31] 2 locks held by getty/5596: [ 287.507425][ T31] #0: ffff88814c5040a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 287.548060][ T31] #1: ffffc9000332b2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400 [ 287.568046][ T31] 3 locks held by syz-executor158/5864: [ 287.573638][ T31] 1 lock held by syz-executor158/5868: [ 287.588035][ T31] #0: ffff888022d14ca0 (&sb->s_type->i_mutex_key#8){++++}-{4:4}, at: blkdev_fallocate+0x1d8/0x4b0 [ 287.608020][ T31] 1 lock held by syz-executor158/5869: [ 287.613619][ T31] #0: ffff888022d14ca0 (&sb->s_type->i_mutex_key#8){++++}-{4:4}, at: blkdev_fallocate+0x1d8/0x4b0 [ 287.648280][ T31] 1 lock held by syz-executor158/5871: [ 287.653804][ T31] #0: ffff888022d14ca0 (&sb->s_type->i_mutex_key#8){++++}-{4:4}, at: blkdev_fallocate+0x1d8/0x4b0 [ 287.677948][ T31] 1 lock held by syz-executor158/5878: [ 287.683466][ T31] #0: ffff888022d14ca0 (&sb->s_type->i_mutex_key#8){++++}-{4:4}, at: blkdev_fallocate+0x1d8/0x4b0 [ 287.718065][ T31] [ 287.720451][ T31] ============================================= [ 287.720451][ T31] [ 287.746216][ T31] NMI backtrace for cpu 0 [ 287.746241][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) [ 287.746267][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 287.746278][ T31] Call Trace: [ 287.746285][ T31] [ 287.746292][ T31] dump_stack_lvl+0x189/0x250 [ 287.746341][ T31] ? __wake_up_klogd+0xd9/0x110 [ 287.746367][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.746396][ T31] ? __pfx__printk+0x10/0x10 [ 287.746429][ T31] nmi_cpu_backtrace+0x39e/0x3d0 [ 287.746458][ T31] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 287.746480][ T31] ? _printk+0xcf/0x120 [ 287.746503][ T31] ? __pfx__printk+0x10/0x10 [ 287.746525][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 287.746563][ T31] nmi_trigger_cpumask_backtrace+0x17a/0x300 [ 287.746589][ T31] watchdog+0xfee/0x1030 [ 287.746616][ T31] ? watchdog+0x1de/0x1030 [ 287.746665][ T31] kthread+0x711/0x8a0 [ 287.746690][ T31] ? __pfx_watchdog+0x10/0x10 [ 287.746715][ T31] ? __pfx_kthread+0x10/0x10 [ 287.746738][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.746764][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 287.746790][ T31] ? __pfx_kthread+0x10/0x10 [ 287.746812][ T31] ret_from_fork+0x3f9/0x770 [ 287.746841][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 287.746872][ T31] ? __switch_to_asm+0x39/0x70 [ 287.746889][ T31] ? __switch_to_asm+0x33/0x70 [ 287.746907][ T31] ? __pfx_kthread+0x10/0x10 [ 287.746928][ T31] ret_from_fork_asm+0x1a/0x30 [ 287.746961][ T31] [ 287.746967][ T31] Sending NMI from CPU 0 to CPUs 1: [ 287.909446][ C1] NMI backtrace for cpu 1 [ 287.909460][ C1] CPU: 1 UID: 0 PID: 5864 Comm: syz-executor158 Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) [ 287.909479][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 287.909493][ C1] RIP: 0010:__sanitizer_cov_trace_cmp4+0x11/0x90 [ 287.909519][ C1] Code: cc cc 0f 1f 80 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 48 8b 04 24 65 48 8b 14 25 08 10 9c 92 <65> 8b 0d d8 b0 db 10 81 e1 00 01 ff 00 74 11 81 f9 00 01 00 00 75 [ 287.909532][ C1] RSP: 0018:ffffc900043ff428 EFLAGS: 00000246 [ 287.909546][ C1] RAX: ffffffff84a3f2be RBX: ffff888024a7a800 RCX: 0000000000000000 [ 287.909557][ C1] RDX: ffff888033721e00 RSI: 0000000000000040 RDI: 0000000000000000 [ 287.909567][ C1] RBP: 0000000000000040 R08: ffff8880261d8097 R09: 1ffff11004c3b012 [ 287.909577][ C1] R10: dffffc0000000000 R11: ffffed1004c3b013 R12: 0000000000000000 [ 287.909588][ C1] R13: dffffc0000000000 R14: ffffe8ffffd0fd00 R15: 0000000000000000 [ 287.909598][ C1] FS: 0000555593d85380(0000) GS:ffff888125d5f000(0000) knlGS:0000000000000000 [ 287.909611][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.909621][ C1] CR2: 0000555593d8e6f8 CR3: 000000002a248000 CR4: 00000000003526f0 [ 287.909635][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.909643][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.909652][ C1] Call Trace: [ 287.909658][ C1] [ 287.909663][ C1] blk_mq_put_tag+0x7e/0x120 [ 287.909688][ C1] __blk_mq_free_request+0x2fb/0x430 [ 287.909715][ C1] null_queue_rq+0xbfe/0xe30 [ 287.909735][ C1] null_queue_rqs+0x123/0x270 [ 287.909751][ C1] ? blk_mq_dispatch_queue_requests+0x11a/0x800 [ 287.909770][ C1] blk_mq_dispatch_queue_requests+0x414/0x800 [ 287.909790][ C1] blk_mq_flush_plug_list+0x432/0x550 [ 287.909808][ C1] ? update_io_ticks+0x21f/0x260 [ 287.909826][ C1] ? __pfx_blk_mq_flush_plug_list+0x10/0x10 [ 287.909849][ C1] blk_add_rq_to_plug+0x175/0x450 [ 287.909865][ C1] blk_mq_submit_bio+0xbd3/0x22d0 [ 287.909885][ C1] ? __pfx_blk_mq_submit_bio+0x10/0x10 [ 287.909911][ C1] __submit_bio+0x207/0x5a0 [ 287.909930][ C1] ? __pfx___submit_bio+0x10/0x10 [ 287.909947][ C1] ? blk_cgroup_bio_start+0x291/0x640 [ 287.909972][ C1] submit_bio_noacct_nocheck+0x505/0xb50 [ 287.909989][ C1] ? pfn_valid+0x125/0x4d0 [ 287.910013][ C1] ? __pfx_submit_bio_noacct_nocheck+0x10/0x10 [ 287.910039][ C1] bio_chain_and_submit+0xeb/0x130 [ 287.910064][ C1] __blkdev_issue_zero_pages+0x24f/0x2c0 [ 287.910088][ C1] blkdev_issue_zeroout+0x56c/0x7c0 [ 287.910109][ C1] ? __mutex_unlock_slowpath+0x1cd/0x700 [ 287.910125][ C1] ? __pfx_blkdev_issue_zeroout+0x10/0x10 [ 287.910151][ C1] ? __pfx_truncate_bdev_range+0x10/0x10 [ 287.910170][ C1] ? truncate_bdev_range+0xed/0x100 [ 287.910188][ C1] blkdev_fallocate+0x3e6/0x4b0 [ 287.910212][ C1] vfs_fallocate+0x6a0/0x830 [ 287.910229][ C1] ? __pfx_ptrace_notify+0x10/0x10 [ 287.910255][ C1] ? __pfx_vfs_fallocate+0x10/0x10 [ 287.910294][ C1] __x64_sys_fallocate+0xc0/0x110 [ 287.910313][ C1] do_syscall_64+0xfa/0x3b0 [ 287.910328][ C1] ? lockdep_hardirqs_on+0x9c/0x150 [ 287.910352][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.910368][ C1] ? clear_bhb_loop+0x60/0xb0 [ 287.910386][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.910402][ C1] RIP: 0033:0x7f9775c82b29 [ 287.910426][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 c1 17 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 287.910438][ C1] RSP: 002b:00007ffe93cd6068 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.910453][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9775c82b29 [ 287.910463][ C1] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 287.910472][ C1] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.910481][ C1] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 287.910497][ C1] R13: 00007ffe93cd6288 R14: 00007ffe93cd6090 R15: 00007ffe93cd6080 [ 287.910515][ C1] [ 287.910522][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.076 msecs [ 287.930133][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 287.930156][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-syzkaller-11173-g546b1c9e93c2 #0 PREEMPT(full) [ 287.930183][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 287.930195][ T31] Call Trace: [ 287.930204][ T31] [ 287.930215][ T31] dump_stack_lvl+0x99/0x250 [ 287.930262][ T31] ? __asan_memcpy+0x40/0x70 [ 287.930294][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.930327][ T31] ? __pfx__printk+0x10/0x10 [ 287.930363][ T31] panic+0x2db/0x790 [ 287.930401][ T31] ? __pfx_panic+0x10/0x10 [ 287.930432][ T31] ? nmi_backtrace_stall_check+0x433/0x440 [ 287.930470][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 287.930499][ T31] ? nmi_trigger_cpumask_backtrace+0x2b6/0x300 [ 287.930535][ T31] watchdog+0x102d/0x1030 [ 287.930566][ T31] ? watchdog+0x1de/0x1030 [ 287.930603][ T31] kthread+0x711/0x8a0 [ 287.930632][ T31] ? __pfx_watchdog+0x10/0x10 [ 287.930661][ T31] ? __pfx_kthread+0x10/0x10 [ 287.930686][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.930717][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 287.930746][ T31] ? __pfx_kthread+0x10/0x10 [ 287.930773][ T31] ret_from_fork+0x3f9/0x770 [ 287.930806][ T31] ? __pfx_ret_from_fork+0x10/0x10 [ 287.930844][ T31] ? __switch_to_asm+0x39/0x70 [ 287.930865][ T31] ? __switch_to_asm+0x33/0x70 [ 287.930885][ T31] ? __pfx_kthread+0x10/0x10 [ 287.930910][ T31] ret_from_fork_asm+0x1a/0x30 [ 287.930947][ T31] [ 288.476387][ T31] Kernel Offset: disabled [ 288.480714][ T31] Rebooting in 86400 seconds..