./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4200910762 <...> [ 97.647052][ T9] cfg80211: failed to load regulatory.db Warning: Permanently added '10.128.1.86' (ED25519) to the list of known hosts. execve("./syz-executor4200910762", ["./syz-executor4200910762"], 0x7ffd21c176d0 /* 10 vars */) = 0 brk(NULL) = 0x555555603000 brk(0x555555603d00) = 0x555555603d00 arch_prctl(ARCH_SET_FS, 0x555555603380) = 0 set_tid_address(0x555555603650) = 5062 set_robust_list(0x555555603660, 24) = 0 rseq(0x555555603ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4200910762", 4096) = 28 getrandom("\x78\x77\x2d\x06\x3d\xa4\x80\x14", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555555603d00 brk(0x555555624d00) = 0x555555624d00 brk(0x555555625000) = 0x555555625000 mprotect(0x7ff87288a000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555603650) = 5063 ./strace-static-x86_64: Process 5063 attached [pid 5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5063] set_robust_list(0x555555603660, 24) = 0 ./strace-static-x86_64: Process 5064 attached [pid 5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5062] <... clone resumed>, child_tidptr=0x555555603650) = 5064 [pid 5064] set_robust_list(0x555555603660, 24 [pid 5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5064] <... set_robust_list resumed>) = 0 ./strace-static-x86_64: Process 5065 attached [pid 5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5067 attached ./strace-static-x86_64: Process 5066 attached [pid 5065] set_robust_list(0x555555603660, 24 [pid 5063] <... clone resumed>, child_tidptr=0x555555603650) = 5065 [pid 5065] <... set_robust_list resumed>) = 0 [pid 5064] <... clone resumed>, child_tidptr=0x555555603650) = 5067 [pid 5062] <... clone resumed>, child_tidptr=0x555555603650) = 5066 [pid 5067] set_robust_list(0x555555603660, 24 [pid 5066] set_robust_list(0x555555603660, 24 [pid 5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5067] <... set_robust_list resumed>) = 0 [pid 5066] <... set_robust_list resumed>) = 0 [pid 5065] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5067] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5066] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5065] <... prctl resumed>) = 0 ./strace-static-x86_64: Process 5069 attached ./strace-static-x86_64: Process 5068 attached [pid 5067] <... prctl resumed>) = 0 [pid 5065] setpgid(0, 0 [pid 5062] <... clone resumed>, child_tidptr=0x555555603650) = 5068 [pid 5069] set_robust_list(0x555555603660, 24 [pid 5068] set_robust_list(0x555555603660, 24 [pid 5067] setpgid(0, 0 [pid 5066] <... clone resumed>, child_tidptr=0x555555603650) = 5069 [pid 5065] <... setpgid resumed>) = 0 [pid 5065] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5069] <... set_robust_list resumed>) = 0 [pid 5068] <... set_robust_list resumed>) = 0 [pid 5067] <... setpgid resumed>) = 0 [pid 5065] <... openat resumed>) = 3 [pid 5069] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5065] write(3, "1000", 4) = 4 [pid 5065] close(3) = 0 [pid 5068] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5065] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5069] <... prctl resumed>) = 0 [pid 5067] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5065] <... openat resumed>) = 3 [pid 5069] setpgid(0, 0 [pid 5065] dup(3./strace-static-x86_64: Process 5071 attached ./strace-static-x86_64: Process 5070 attached [pid 5069] <... setpgid resumed>) = 0 [pid 5067] <... openat resumed>) = 3 [pid 5067] write(3, "1000", 4 [pid 5065] <... dup resumed>) = 4 [pid 5062] <... clone resumed>, child_tidptr=0x555555603650) = 5070 [pid 5071] set_robust_list(0x555555603660, 24 [pid 5067] <... write resumed>) = 4 [pid 5070] set_robust_list(0x555555603660, 24 [pid 5065] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5068] <... clone resumed>, child_tidptr=0x555555603650) = 5071 [pid 5071] <... set_robust_list resumed>) = 0 [pid 5070] <... set_robust_list resumed>) = 0 [pid 5069] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5067] close(3 [pid 5070] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5071] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5069] <... openat resumed>) = 3 [pid 5067] <... close resumed>) = 0 [pid 5067] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5071] <... prctl resumed>) = 0 [pid 5067] <... openat resumed>) = 3 [pid 5071] setpgid(0, 0 [pid 5067] dup(3) = 4 [pid 5071] <... setpgid resumed>) = 0 [pid 5069] write(3, "1000", 4./strace-static-x86_64: Process 5072 attached [pid 5071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5069] <... write resumed>) = 4 [pid 5067] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5072] set_robust_list(0x555555603660, 24 [pid 5071] <... openat resumed>) = 3 [pid 5070] <... clone resumed>, child_tidptr=0x555555603650) = 5072 [pid 5069] close(3) = 0 [pid 5072] <... set_robust_list resumed>) = 0 [pid 5072] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5071] write(3, "1000", 4 [pid 5069] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5072] <... prctl resumed>) = 0 [pid 5071] <... write resumed>) = 4 [pid 5071] close(3) = 0 [pid 5072] setpgid(0, 0 [pid 5071] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3 [pid 5071] dup(3) = 4 [pid 5071] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5072] <... setpgid resumed>) = 0 [pid 5069] <... openat resumed>) = 3 [pid 5072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5072] write(3, "1000", 4) = 4 [pid 5069] dup(3 [pid 5072] close(3) = 0 [pid 5072] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT [pid 5069] <... dup resumed>) = 4 [pid 5072] <... openat resumed>) = 3 [pid 5069] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5072] dup(3) = 4 [pid 5072] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5064] kill(-5067, SIGKILL) = 0 [pid 5063] kill(-5065, SIGKILL [pid 5064] kill(5067, SIGKILL [pid 5063] <... kill resumed>) = 0 [pid 5064] <... kill resumed>) = 0 [pid 5063] kill(5065, SIGKILL) = 0 [pid 5066] kill(-5069, SIGKILL) = 0 [pid 5066] kill(5069, SIGKILL) = 0 [pid 5068] kill(-5071, SIGKILL) = 0 [pid 5068] kill(5071, SIGKILL) = 0 [pid 5070] kill(-5072, SIGKILL) = 0 [pid 5070] kill(5072, SIGKILL) = 0 [pid 5063] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5064] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5066] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5066] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5066] getdents64(3, [pid 5063] <... openat resumed>) = 3 [pid 5063] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5063] getdents64(3, [pid 5066] <... getdents64 resumed>0x5555556046f0 /* 2 entries */, 32768) = 48 [pid 5064] <... openat resumed>) = 3 [pid 5063] <... getdents64 resumed>0x5555556046f0 /* 2 entries */, 32768) = 48 [pid 5066] getdents64(3, 0x5555556046f0 /* 0 entries */, 32768) = 0 [pid 5063] getdents64(3, [pid 5066] close(3 [pid 5063] <... getdents64 resumed>0x5555556046f0 /* 0 entries */, 32768) = 0 [pid 5066] <... close resumed>) = 0 [pid 5063] close(3) = 0 [pid 5064] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5064] getdents64(3, 0x5555556046f0 /* 2 entries */, 32768) = 48 [pid 5064] getdents64(3, 0x5555556046f0 /* 0 entries */, 32768) = 0 [pid 5064] close(3) = 0 [pid 5068] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5068] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5068] getdents64(3, 0x5555556046f0 /* 2 entries */, 32768) = 48 [pid 5068] getdents64(3, 0x5555556046f0 /* 0 entries */, 32768) = 0 [pid 5068] close(3) = 0 [pid 5070] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5070] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5070] getdents64(3, 0x5555556046f0 /* 2 entries */, 32768) = 48 [pid 5070] getdents64(3, 0x5555556046f0 /* 0 entries */, 32768) = 0 [pid 5070] close(3) = 0 [pid 5065] <... fallocate resumed>) = ? [pid 5065] +++ killed by SIGKILL +++ [pid 5063] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5065, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=12793 /* 127.93 s */} --- [pid 5063] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5089 attached , child_tidptr=0x555555603650) = 5089 [pid 5089] set_robust_list(0x555555603660, 24) = 0 [pid 5089] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5089] setpgid(0, 0) = 0 [pid 5089] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5089] write(3, "1000", 4) = 4 [pid 5089] close(3) = 0 [pid 5089] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3 [pid 5089] dup(3) = 4 [pid 5089] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 [pid 5063] kill(-5089, SIGKILL) = 0 [pid 5063] kill(5089, SIGKILL) = 0 [pid 5063] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5063] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5063] getdents64(3, 0x5555556046f0 /* 2 entries */, 32768) = 48 [pid 5063] getdents64(3, 0x5555556046f0 /* 0 entries */, 32768) = 0 [pid 5063] close(3) = 0 [ 287.084218][ T29] INFO: task syz-executor420:5069 blocked for more than 143 seconds. [ 287.092808][ T29] Not tainted 6.8.0-rc1-syzkaller-00169-gecb1b8288dc7 #0 [ 287.101045][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.110405][ T29] task:syz-executor420 state:D stack:28208 pid:5069 tgid:5069 ppid:5066 flags:0x00004006 [ 287.121352][ T29] Call Trace: [ 287.124804][ T29] [ 287.128280][ T29] __schedule+0xf12/0x5c00 [ 287.132884][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.139001][ T29] ? hlock_class+0x4e/0x130 [ 287.143576][ T29] ? mark_lock+0xb5/0xc50 [ 287.148659][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.154752][ T29] ? io_schedule_timeout+0x150/0x150 [ 287.160658][ T29] ? schedule+0x1fc/0x270 [ 287.165661][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.171633][ T29] ? __down_write_common+0x899/0x1400 [ 287.177218][ T29] schedule+0xe9/0x270 [ 287.181344][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.187472][ T29] __down_write_common+0x948/0x1400 [ 287.192741][ T29] ? aa_file_perm+0x4f2/0x1000 [ 287.197729][ T29] ? up_write+0x510/0x510 [ 287.202131][ T29] ? lock_sync+0x190/0x190 [ 287.206794][ T29] ? preempt_count_sub+0x160/0x160 [ 287.212039][ T29] blkdev_fallocate+0x1e9/0x450 [ 287.217069][ T29] ? file_to_blk_mode+0x1a0/0x1a0 [ 287.222517][ T29] vfs_fallocate+0x4b4/0xf70 [ 287.227353][ T29] __x64_sys_fallocate+0xd5/0x140 [ 287.233100][ T29] do_syscall_64+0xd3/0x250 [ 287.238317][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.244486][ T29] RIP: 0033:0x7ff872817b29 [ 287.248959][ T29] RSP: 002b:00007ffe108b2dc8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.257975][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff872817b29 [ 287.266677][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.275602][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.283650][ T29] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.292340][ T29] R13: 00007ffe108b2fe8 R14: 00007ffe108b2df0 R15: 00007ffe108b2de0 [ 287.301043][ T29] [ 287.304808][ T29] INFO: task syz-executor420:5071 blocked for more than 143 seconds. [ 287.312923][ T29] Not tainted 6.8.0-rc1-syzkaller-00169-gecb1b8288dc7 #0 [ 287.320655][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.329771][ T29] task:syz-executor420 state:D stack:28208 pid:5071 tgid:5071 ppid:5068 flags:0x00004006 [ 287.340223][ T29] Call Trace: [ 287.343543][ T29] [ 287.346589][ T29] __schedule+0xf12/0x5c00 [ 287.351069][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.357730][ T29] ? hlock_class+0x4e/0x130 [ 287.362804][ T29] ? mark_lock+0xb5/0xc50 [ 287.367811][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.373868][ T29] ? io_schedule_timeout+0x150/0x150 [ 287.379869][ T29] ? schedule+0x1fc/0x270 [ 287.384829][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.390798][ T29] ? __down_write_common+0x899/0x1400 [ 287.396907][ T29] schedule+0xe9/0x270 [ 287.401047][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.407172][ T29] __down_write_common+0x948/0x1400 [ 287.412444][ T29] ? aa_file_perm+0x4f2/0x1000 [ 287.417392][ T29] ? up_write+0x510/0x510 [ 287.421798][ T29] ? lock_sync+0x190/0x190 [ 287.426343][ T29] ? preempt_count_sub+0x160/0x160 [ 287.431986][ T29] blkdev_fallocate+0x1e9/0x450 [ 287.437032][ T29] ? file_to_blk_mode+0x1a0/0x1a0 [ 287.442225][ T29] vfs_fallocate+0x4b4/0xf70 [ 287.447144][ T29] __x64_sys_fallocate+0xd5/0x140 [ 287.452793][ T29] do_syscall_64+0xd3/0x250 [ 287.457978][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.464543][ T29] RIP: 0033:0x7ff872817b29 [ 287.469675][ T29] RSP: 002b:00007ffe108b2dc8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.479204][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff872817b29 [ 287.488294][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.497260][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.505896][ T29] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.513922][ T29] R13: 00007ffe108b2fe8 R14: 00007ffe108b2df0 R15: 00007ffe108b2de0 [ 287.522747][ T29] [ 287.525903][ T29] INFO: task syz-executor420:5072 blocked for more than 143 seconds. [ 287.534151][ T29] Not tainted 6.8.0-rc1-syzkaller-00169-gecb1b8288dc7 #0 [ 287.541744][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.550581][ T29] task:syz-executor420 state:D stack:28208 pid:5072 tgid:5072 ppid:5070 flags:0x00004006 [ 287.561416][ T29] Call Trace: [ 287.564859][ T29] [ 287.567837][ T29] __schedule+0xf12/0x5c00 [ 287.572313][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.578531][ T29] ? hlock_class+0x4e/0x130 [ 287.583107][ T29] ? mark_lock+0xb5/0xc50 [ 287.588107][ T29] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.594378][ T29] ? io_schedule_timeout+0x150/0x150 [ 287.600287][ T29] ? schedule+0x1fc/0x270 [ 287.605224][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.611286][ T29] ? __down_write_common+0x899/0x1400 [ 287.617419][ T29] schedule+0xe9/0x270 [ 287.621561][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.627306][ T29] __down_write_common+0x948/0x1400 [ 287.632920][ T29] ? aa_file_perm+0x4f2/0x1000 [ 287.638433][ T29] ? up_write+0x510/0x510 [ 287.643423][ T29] ? lock_sync+0x190/0x190 [ 287.647954][ T29] ? preempt_count_sub+0x160/0x160 [ 287.655070][ T29] blkdev_fallocate+0x1e9/0x450 [ 287.660121][ T29] ? file_to_blk_mode+0x1a0/0x1a0 [ 287.666986][ T29] vfs_fallocate+0x4b4/0xf70 [ 287.671668][ T29] __x64_sys_fallocate+0xd5/0x140 [ 287.676801][ T29] do_syscall_64+0xd3/0x250 [ 287.681476][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.688208][ T29] RIP: 0033:0x7ff872817b29 [ 287.692676][ T29] RSP: 002b:00007ffe108b2dc8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.701539][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007ff872817b29 [ 287.709704][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.717936][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.726147][ T29] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.734205][ T29] R13: 00007ffe108b2fe8 R14: 00007ffe108b2df0 R15: 00007ffe108b2de0 [ 287.742790][ T29] [ 287.746847][ T29] [ 287.746847][ T29] Showing all locks held in the system: [ 287.755318][ T29] 1 lock held by khungtaskd/29: [ 287.760304][ T29] #0: ffffffff8d1acba0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340 [ 287.770990][ T29] 2 locks held by syslogd/4495: [ 287.776527][ T29] 2 locks held by klogd/4502: [ 287.781269][ T29] 2 locks held by getty/4816: [ 287.786133][ T29] #0: ffff88802947d0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 287.796126][ T29] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc6/0x1490 [ 287.807020][ T29] 2 locks held by syz-executor420/5067: [ 287.813178][ T29] 1 lock held by syz-executor420/5069: [ 287.818716][ T29] #0: ffff88801b48a040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450 [ 287.830154][ T29] 1 lock held by syz-executor420/5071: [ 287.835705][ T29] #0: ffff88801b48a040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450 [ 287.846804][ T29] 1 lock held by syz-executor420/5072: [ 287.852324][ T29] #0: ffff88801b48a040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450 [ 287.863327][ T29] 1 lock held by syz-executor420/5089: [ 287.868988][ T29] #0: ffff88801b48a040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450 [ 287.879879][ T29] [ 287.882244][ T29] ============================================= [ 287.882244][ T29] [ 287.890768][ T29] NMI backtrace for cpu 0 [ 287.895303][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc1-syzkaller-00169-gecb1b8288dc7 #0 [ 287.905154][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 287.915583][ T29] Call Trace: [ 287.918887][ T29] [ 287.921837][ T29] dump_stack_lvl+0xd9/0x1b0 [ 287.926516][ T29] nmi_cpu_backtrace+0x277/0x390 [ 287.931709][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 287.936973][ T29] nmi_trigger_cpumask_backtrace+0x299/0x300 [ 287.942992][ T29] watchdog+0xf87/0x1210 [ 287.947331][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.955273][ T29] ? lockdep_hardirqs_on+0x7d/0x110 [ 287.960529][ T29] ? __kthread_parkme+0x14b/0x220 [ 287.965685][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.972056][ T29] kthread+0x2c6/0x3a0 [ 287.976646][ T29] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.981909][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.987597][ T29] ret_from_fork+0x45/0x80 [ 287.992174][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.998133][ T29] ret_from_fork_asm+0x11/0x20 [ 288.003164][ T29] [ 288.006335][ T29] Sending NMI from CPU 0 to CPUs 1: [ 288.011766][ C1] NMI backtrace for cpu 1 [ 288.011779][ C1] CPU: 1 PID: 22 Comm: ksoftirqd/1 Not tainted 6.8.0-rc1-syzkaller-00169-gecb1b8288dc7 #0 [ 288.011807][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 288.011821][ C1] RIP: 0010:__orc_find+0xa1/0x130 [ 288.011853][ C1] Code: e9 4d 00 48 89 e8 48 29 d8 48 89 c2 48 c1 e8 3f 48 c1 fa 02 48 01 d0 48 d1 f8 4c 8d 3c 83 4c 89 fa 48 c1 ea 03 42 0f b6 0c 32 <4c> 89 fa 83 e2 07 83 c2 03 38 ca 7c 04 84 c9 75 6f 49 63 17 4c 89 [ 288.011900][ C1] RSP: 0018:ffffc900001c7840 EFLAGS: 00000a03 [ 288.011920][ C1] RAX: 0000000000000000 RBX: ffffffff8f4a486c RCX: 0000000000000000 [ 288.011936][ C1] RDX: 1ffffffff1e9490d RSI: ffffffff813a3a7a RDI: 0000000000000005 [ 288.011953][ C1] RBP: ffffffff8f4a486c R08: 0000000000000005 R09: 0000000000000000 [ 288.011968][ C1] R10: 0000000000000001 R11: 0000000000000001 R12: ffffffff813a6f53 [ 288.011989][ C1] R13: ffffffff8fc5c51a R14: dffffc0000000000 R15: ffffffff8f4a486c [ 288.012006][ C1] FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 288.012030][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 288.012047][ C1] CR2: 00007f92099399b8 CR3: 000000007d120000 CR4: 00000000003506f0 [ 288.012063][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 288.012079][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 288.012094][ C1] Call Trace: [ 288.012101][ C1] [ 288.012110][ C1] ? show_regs+0x8f/0xa0 [ 288.012143][ C1] ? nmi_cpu_backtrace+0x1d4/0x390 [ 288.012177][ C1] ? nmi_cpu_backtrace_handler+0xc/0x10 [ 288.012216][ C1] ? nmi_handle+0x1a6/0x570 [ 288.012250][ C1] ? __orc_find+0xa1/0x130 [ 288.012272][ C1] ? default_do_nmi+0x6a/0x160 [ 288.012314][ C1] ? exc_nmi+0x186/0x200 [ 288.012352][ C1] ? end_repeat_nmi+0xf/0x2a [ 288.012391][ C1] ? __unwind_start+0x6b3/0x880 [ 288.012418][ C1] ? __orc_find+0x7a/0x130 [ 288.012440][ C1] ? __orc_find+0xa1/0x130 [ 288.012462][ C1] ? __orc_find+0xa1/0x130 [ 288.012485][ C1] ? __orc_find+0xa1/0x130 [ 288.012507][ C1] [ 288.012514][ C1] [ 288.012523][ C1] ? __unwind_start+0x6b3/0x880 [ 288.012547][ C1] unwind_next_frame+0x329/0x2390 [ 288.012578][ C1] ? __unwind_start+0x6b4/0x880 [ 288.012605][ C1] __unwind_start+0x5a4/0x880 [ 288.012631][ C1] ? write_profile+0x450/0x450 [ 288.012685][ C1] arch_stack_walk+0xaf/0x170 [ 288.012715][ C1] ? __unwind_start+0x6b4/0x880 [ 288.012742][ C1] stack_trace_save+0x96/0xd0 [ 288.012770][ C1] ? filter_irq_stacks+0x90/0x90 [ 288.012799][ C1] ? lock_acquire+0x1ae/0x520 [ 288.012823][ C1] save_stack+0x160/0x1f0 [ 288.012868][ C1] ? register_early_stack+0xd0/0xd0 [ 288.012904][ C1] ? lock_sync+0x190/0x190 [ 288.012938][ C1] __reset_page_owner+0x51/0x2e0 [ 288.012976][ C1] ? rcu_is_watching+0x12/0xb0 [ 288.013010][ C1] free_unref_page_prepare+0x51f/0xb10 [ 288.013056][ C1] free_unref_page+0x33/0x3c0 [ 288.013099][ C1] ? rcu_core+0x817/0x1680 [ 288.013154][ C1] rcu_core+0x819/0x1680 [ 288.013198][ C1] ? rcutree_report_cpu_dead+0x4d0/0x4d0 [ 288.013246][ C1] __do_softirq+0x21a/0x8de [ 288.013323][ C1] ? __lock_text_end+0x3/0x3 [ 288.013356][ C1] ? run_ksoftirqd+0x54/0x60 [ 288.013388][ C1] ? __probestub_softirq_exit+0x10/0x10 [ 288.013417][ C1] ? smpboot_thread_fn+0x59b/0xa10 [ 288.013446][ C1] run_ksoftirqd+0x31/0x60 [ 288.013474][ C1] smpboot_thread_fn+0x660/0xa10 [ 288.013503][ C1] ? __kthread_parkme+0x14b/0x220 [ 288.013533][ C1] ? sort_range+0x30/0x30 [ 288.013560][ C1] kthread+0x2c6/0x3a0 [ 288.013594][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 288.013626][ C1] ? kthread_complete_and_exit+0x40/0x40 [ 288.013660][ C1] ret_from_fork+0x45/0x80 [ 288.013691][ C1] ? kthread_complete_and_exit+0x40/0x40 [ 288.013725][ C1] ret_from_fork_asm+0x11/0x20 [ 288.013770][ C1] [ 288.013778][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 2.012 msecs [ 288.016452][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 288.016469][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc1-syzkaller-00169-gecb1b8288dc7 #0 [ 288.016505][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 288.016522][ T29] Call Trace: [ 288.016533][ T29] [ 288.016544][ T29] dump_stack_lvl+0xd9/0x1b0 [ 288.016591][ T29] panic+0x6dc/0x790 [ 288.016637][ T29] ? panic_smp_self_stop+0xa0/0xa0 [ 288.016682][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 288.016740][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 288.016789][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 288.016841][ T29] ? watchdog+0xd3e/0x1210 [ 288.016883][ T29] ? watchdog+0xd31/0x1210 [ 288.016931][ T29] watchdog+0xd4f/0x1210 [ 288.016982][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 288.017024][ T29] ? lockdep_hardirqs_on+0x7d/0x110 [ 288.017061][ T29] ? __kthread_parkme+0x14b/0x220 [ 288.017109][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 288.017154][ T29] kthread+0x2c6/0x3a0 [ 288.017192][ T29] ? _raw_spin_unlock_irq+0x23/0x50 [ 288.017236][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 288.017282][ T29] ret_from_fork+0x45/0x80 [ 288.017322][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 288.017367][ T29] ret_from_fork_asm+0x11/0x20 [ 288.017430][ T29] [ 288.018767][ T29] Kernel Offset: disabled [ 288.543638][ T29] Rebooting in 86400 seconds..