./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3287302219 <...> Warning: Permanently added '10.128.0.102' (ED25519) to the list of known hosts. execve("./syz-executor3287302219", ["./syz-executor3287302219"], 0x7ffd1cf06a60 /* 10 vars */) = 0 brk(NULL) = 0x555556e88000 brk(0x555556e88d00) = 0x555556e88d00 arch_prctl(ARCH_SET_FS, 0x555556e88380) = 0 set_tid_address(0x555556e88650) = 5250 set_robust_list(0x555556e88660, 24) = 0 rseq(0x555556e88ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3287302219", 4096) = 28 getrandom("\xa2\xed\x81\x13\xd4\x1c\xa1\xdb", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555556e88d00 brk(0x555556ea9d00) = 0x555556ea9d00 brk(0x555556eaa000) = 0x555556eaa000 mprotect(0x7fa33168c000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5251 attached , child_tidptr=0x555556e88650) = 5251 [pid 5250] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5251] set_robust_list(0x555556e88660, 24) = 0 [pid 5251] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5252 attached [pid 5250] <... clone resumed>, child_tidptr=0x555556e88650) = 5252 [pid 5250] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5252] set_robust_list(0x555556e88660, 24./strace-static-x86_64: Process 5253 attached ) = 0 [pid 5252] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5254 attached [pid 5253] set_robust_list(0x555556e88660, 24) = 0 [pid 5253] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5255 attached [pid 5250] <... clone resumed>, child_tidptr=0x555556e88650) = 5253 [pid 5251] <... clone resumed>, child_tidptr=0x555556e88650) = 5254 [pid 5250] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5254] set_robust_list(0x555556e88660, 24./strace-static-x86_64: Process 5256 attached [pid 5255] set_robust_list(0x555556e88660, 24 [pid 5254] <... set_robust_list resumed>) = 0 [pid 5252] <... clone resumed>, child_tidptr=0x555556e88650) = 5255 [pid 5256] set_robust_list(0x555556e88660, 24 [pid 5255] <... set_robust_list resumed>) = 0 [pid 5254] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5257 attached [pid 5256] <... set_robust_list resumed>) = 0 [pid 5255] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5254] <... prctl resumed>) = 0 [pid 5253] <... clone resumed>, child_tidptr=0x555556e88650) = 5256 [pid 5250] <... clone resumed>, child_tidptr=0x555556e88650) = 5257 [pid 5257] set_robust_list(0x555556e88660, 24 [pid 5256] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5255] <... prctl resumed>) = 0 [pid 5254] setpgid(0, 0 [pid 5250] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5257] <... set_robust_list resumed>) = 0 [pid 5254] <... setpgid resumed>) = 0 [pid 5255] setpgid(0, 0 [pid 5254] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5258 attached [pid 5257] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5256] <... prctl resumed>) = 0 [pid 5255] <... setpgid resumed>) = 0 [pid 5258] set_robust_list(0x555556e88660, 24 [pid 5256] setpgid(0, 0 [pid 5255] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5254] <... openat resumed>) = 3 [pid 5258] <... set_robust_list resumed>) = 0 [pid 5258] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5254] write(3, "1000", 4./strace-static-x86_64: Process 5260 attached ./strace-static-x86_64: Process 5259 attached [pid 5250] <... clone resumed>, child_tidptr=0x555556e88650) = 5258 [pid 5256] <... setpgid resumed>) = 0 [pid 5255] <... openat resumed>) = 3 [pid 5258] <... clone resumed>, child_tidptr=0x555556e88650) = 5260 [pid 5256] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5254] <... write resumed>) = 4 [pid 5260] set_robust_list(0x555556e88660, 24 [pid 5259] set_robust_list(0x555556e88660, 24 [pid 5254] close(3executing program [pid 5257] <... clone resumed>, child_tidptr=0x555556e88650) = 5259 [pid 5260] <... set_robust_list resumed>) = 0 [pid 5259] <... set_robust_list resumed>) = 0 [pid 5255] write(3, "1000", 4 [pid 5254] <... close resumed>) = 0 [pid 5255] <... write resumed>) = 4 [pid 5254] write(1, "executing program\n", 18 [pid 5260] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5259] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5256] <... openat resumed>) = 3 [pid 5255] close(3 [pid 5260] <... prctl resumed>) = 0 [pid 5254] <... write resumed>) = 18 [pid 5259] <... prctl resumed>) = 0 [pid 5254] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5255] <... close resumed>) = 0 [pid 5260] setpgid(0, 0 [pid 5259] setpgid(0, 0 [pid 5256] write(3, "1000", 4 [pid 5255] write(1, "executing program\n", 18 [pid 5259] <... setpgid resumed>) = 0 executing program [pid 5259] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5254] <... openat resumed>) = 3 [pid 5260] <... setpgid resumed>) = 0 [pid 5255] <... write resumed>) = 18 [pid 5256] <... write resumed>) = 4 [pid 5256] close(3 [pid 5260] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5255] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5256] <... close resumed>) = 0 [pid 5259] <... openat resumed>) = 3 executing program [pid 5259] write(3, "1000", 4) = 4 [pid 5256] write(1, "executing program\n", 18 [pid 5255] <... openat resumed>) = 3 [pid 5260] <... openat resumed>) = 3 [pid 5259] close(3 [pid 5256] <... write resumed>) = 18 [pid 5254] dup(3 [pid 5255] dup(3executing program [pid 5259] <... close resumed>) = 0 [pid 5256] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5255] <... dup resumed>) = 4 [pid 5259] write(1, "executing program\n", 18 [pid 5260] write(3, "1000", 4 [pid 5259] <... write resumed>) = 18 [pid 5256] <... openat resumed>) = 3 [pid 5255] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5254] <... dup resumed>) = 4 [pid 5260] <... write resumed>) = 4 [pid 5259] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC) = 3 [pid 5260] close(3executing program [pid 5256] dup(3 [pid 5254] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5260] <... close resumed>) = 0 [pid 5259] dup(3 [pid 5260] write(1, "executing program\n", 18) = 18 [pid 5260] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC [pid 5259] <... dup resumed>) = 4 [pid 5256] <... dup resumed>) = 4 [pid 5260] <... openat resumed>) = 3 [pid 5259] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5256] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5260] dup(3) = 4 [pid 5260] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5253] kill(-5256, SIGKILL) = 0 [pid 5253] kill(5256, SIGKILL) = 0 [pid 5252] kill(-5255, SIGKILL) = 0 [pid 5258] kill(-5260, SIGKILL [pid 5252] kill(5255, SIGKILL [pid 5251] kill(-5254, SIGKILL [pid 5258] <... kill resumed>) = 0 [pid 5252] <... kill resumed>) = 0 [pid 5251] <... kill resumed>) = 0 [pid 5258] kill(5260, SIGKILL) = 0 [pid 5251] kill(5254, SIGKILL) = 0 [pid 5257] kill(-5259, SIGKILL) = 0 [pid 5257] kill(5259, SIGKILL) = 0 [pid 5258] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5257] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5253] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5258] <... openat resumed>) = 3 [pid 5257] <... openat resumed>) = 3 [pid 5253] <... openat resumed>) = 3 [pid 5258] newfstatat(3, "", [pid 5251] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5253] newfstatat(3, "", [pid 5257] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5257] getdents64(3, [pid 5253] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5258] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5258] getdents64(3, [pid 5253] getdents64(3, [pid 5252] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5252] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5252] getdents64(3, [pid 5257] <... getdents64 resumed>0x555556e896f0 /* 2 entries */, 32768) = 48 [pid 5258] <... getdents64 resumed>0x555556e896f0 /* 2 entries */, 32768) = 48 [pid 5257] getdents64(3, [pid 5253] <... getdents64 resumed>0x555556e896f0 /* 2 entries */, 32768) = 48 [pid 5252] <... getdents64 resumed>0x555556e896f0 /* 2 entries */, 32768) = 48 [pid 5251] <... openat resumed>) = 3 [pid 5258] getdents64(3, [pid 5253] getdents64(3, [pid 5252] getdents64(3, [pid 5253] <... getdents64 resumed>0x555556e896f0 /* 0 entries */, 32768) = 0 [pid 5252] <... getdents64 resumed>0x555556e896f0 /* 0 entries */, 32768) = 0 [pid 5253] close(3 [pid 5252] close(3 [pid 5258] <... getdents64 resumed>0x555556e896f0 /* 0 entries */, 32768) = 0 [pid 5257] <... getdents64 resumed>0x555556e896f0 /* 0 entries */, 32768) = 0 [pid 5253] <... close resumed>) = 0 [pid 5252] <... close resumed>) = 0 [pid 5251] newfstatat(3, "", [pid 5258] close(3 [pid 5257] close(3 [pid 5251] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5258] <... close resumed>) = 0 [pid 5257] <... close resumed>) = 0 [pid 5251] getdents64(3, 0x555556e896f0 /* 2 entries */, 32768) = 48 [pid 5251] getdents64(3, 0x555556e896f0 /* 0 entries */, 32768) = 0 [pid 5251] close(3) = 0 [pid 5255] <... fallocate resumed>) = ? [pid 5255] +++ killed by SIGKILL +++ [pid 5252] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5255, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=3513 /* 35.13 s */} --- [pid 5252] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5261 attached [pid 5261] set_robust_list(0x555556e88660, 24 [pid 5252] <... clone resumed>, child_tidptr=0x555556e88650) = 5261 [pid 5261] <... set_robust_list resumed>) = 0 [pid 5261] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5261] setpgid(0, 0) = 0 [pid 5261] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5261] write(3, "1000", 4) = 4 [pid 5261] close(3) = 0 executing program [pid 5261] write(1, "executing program\n", 18) = 18 [pid 5261] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC) = 3 [pid 5261] dup(3) = 4 [pid 5261] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5252] kill(-5261, SIGKILL) = 0 [pid 5252] kill(5261, SIGKILL) = 0 [pid 5252] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5252] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5252] getdents64(3, 0x555556e896f0 /* 2 entries */, 32768) = 48 [pid 5252] getdents64(3, 0x555556e896f0 /* 0 entries */, 32768) = 0 [pid 5252] close(3) = 0 [pid 5254] <... fallocate resumed>) = ? [pid 5254] +++ killed by SIGKILL +++ [pid 5251] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5254, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=3487 /* 34.87 s */} --- [pid 5251] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5269 attached [pid 5269] set_robust_list(0x555556e88660, 24) = 0 [pid 5251] <... clone resumed>, child_tidptr=0x555556e88650) = 5269 [pid 5269] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5269] setpgid(0, 0) = 0 [pid 5269] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 executing program [pid 5269] write(3, "1000", 4) = 4 [pid 5269] close(3) = 0 [pid 5269] write(1, "executing program\n", 18) = 18 [pid 5269] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_TRUNC|O_APPEND|O_NONBLOCK|__O_SYNC|O_NOFOLLOW|O_NOATIME|FASYNC) = 3 [pid 5269] dup(3) = 4 [pid 5269] fallocate(4, FALLOC_FL_ZERO_RANGE, 0, 137438954496 [pid 5251] kill(-5269, SIGKILL) = 0 [pid 5251] kill(5269, SIGKILL) = 0 [pid 5251] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5251] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5251] getdents64(3, 0x555556e896f0 /* 2 entries */, 32768) = 48 [pid 5251] getdents64(3, 0x555556e896f0 /* 0 entries */, 32768) = 0 [pid 5251] close(3) = 0 [ 430.206383][ T30] INFO: task syz-executor328:5256 blocked for more than 143 seconds. [ 430.215833][ T30] Not tainted 6.12.0-rc2-syzkaller-00006-g87d6aab2389e #0 [ 430.224793][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 430.234527][ T30] task:syz-executor328 state:D stack:25648 pid:5256 tgid:5256 ppid:5253 flags:0x00004006 [ 430.249916][ T30] Call Trace: [ 430.253275][ T30] [ 430.256399][ T30] __schedule+0x1843/0x4ae0 [ 430.262209][ T30] ? __pfx___schedule+0x10/0x10 [ 430.270475][ T30] ? __pfx_lock_release+0x10/0x10 [ 430.275642][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 430.282896][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 430.291657][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 430.298098][ T30] ? schedule+0x90/0x320 [ 430.303459][ T30] schedule+0x14b/0x320 [ 430.308816][ T30] schedule_preempt_disabled+0x13/0x30 [ 430.317806][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 430.323759][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 430.329810][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 430.336063][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 430.342345][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 430.349891][ T30] down_write+0x1d7/0x220 [ 430.358285][ T30] ? __pfx_down_write+0x10/0x10 [ 430.363239][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 430.369666][ T30] blkdev_fallocate+0x20e/0x490 [ 430.376120][ T30] vfs_fallocate+0x569/0x6e0 [ 430.380798][ T30] __x64_sys_fallocate+0xbd/0x110 [ 430.386113][ T30] do_syscall_64+0xf3/0x230 [ 430.390682][ T30] ? clear_bhb_loop+0x35/0x90 [ 430.395426][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.403255][ T30] RIP: 0033:0x7fa331619b29 [ 430.410002][ T30] RSP: 002b:00007ffed4cbd348 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 430.420602][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa331619b29 [ 430.429745][ T30] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 430.437812][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 430.445836][ T30] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 430.455142][ T30] R13: 00007ffed4cbd568 R14: 00007ffed4cbd370 R15: 00007ffed4cbd360 [ 430.464553][ T30] [ 430.469356][ T30] INFO: task syz-executor328:5260 blocked for more than 143 seconds. [ 430.484263][ T30] Not tainted 6.12.0-rc2-syzkaller-00006-g87d6aab2389e #0 [ 430.492948][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 430.502684][ T30] task:syz-executor328 state:D stack:26736 pid:5260 tgid:5260 ppid:5258 flags:0x00004006 [ 430.513988][ T30] Call Trace: [ 430.517384][ T30] [ 430.520373][ T30] __schedule+0x1843/0x4ae0 [ 430.524966][ T30] ? __pfx___schedule+0x10/0x10 [ 430.529966][ T30] ? __pfx_lock_release+0x10/0x10 [ 430.535056][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 430.545853][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 430.553551][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 430.559959][ T30] ? schedule+0x90/0x320 [ 430.564273][ T30] schedule+0x14b/0x320 [ 430.568722][ T30] schedule_preempt_disabled+0x13/0x30 [ 430.574251][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 430.583405][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 430.590561][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 430.598942][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 430.606282][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 430.612372][ T30] down_write+0x1d7/0x220 [ 430.616814][ T30] ? __pfx_down_write+0x10/0x10 [ 430.621813][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 430.627246][ T30] blkdev_fallocate+0x20e/0x490 [ 430.633233][ T30] vfs_fallocate+0x569/0x6e0 [ 430.638975][ T30] __x64_sys_fallocate+0xbd/0x110 [ 430.646585][ T30] do_syscall_64+0xf3/0x230 [ 430.651249][ T30] ? clear_bhb_loop+0x35/0x90 [ 430.657101][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 430.665846][ T30] RIP: 0033:0x7fa331619b29 [ 430.670379][ T30] RSP: 002b:00007ffed4cbd348 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 430.679002][ T30] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fa331619b29 [ 430.688404][ T30] RDX: 0000000000000000 RSI: 0000000000000010 RDI: 0000000000000004 [ 430.696537][ T30] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 430.704661][ T30] R10: 0000002000000400 R11: 0000000000000246 R12: 0000000000000001 [ 430.713950][ T30] R13: 00007ffed4cbd568 R14: 00007ffed4cbd370 R15: 00007ffed4cbd360 [ 430.724768][ T30] [ 430.729004][ T30] [ 430.729004][ T30] Showing all locks held in the system: [ 430.739047][ T30] 1 lock held by khungtaskd/30: [ 430.743953][ T30] #0: ffffffff8e937de0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 430.766460][ T30] 3 locks held by syslogd/4659: [ 430.771529][ T30] 1 lock held by klogd/4666: [ 430.776310][ T30] 2 locks held by getty/4985: [ 430.781028][ T30] #0: ffff88802ebb40a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 430.790931][ T30] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6a6/0x1e00 [ 430.801186][ T30] 1 lock held by syz-executor328/5256: [ 430.806842][ T30] #0: ffff888148c90940 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x20e/0x490 [ 430.817621][ T30] 1 lock held by syz-executor328/5259: [ 430.823126][ T30] 1 lock held by syz-executor328/5260: [ 430.828667][ T30] #0: ffff888148c90940 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x20e/0x490 [ 430.840363][ T30] 1 lock held by syz-executor328/5261: [ 430.846352][ T30] #0: ffff888148c90940 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x20e/0x490 [ 430.858443][ T30] 1 lock held by syz-executor328/5269: [ 430.894185][ T30] #0: ffff888148c90940 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x20e/0x490 [ 430.938762][ T30] [ 430.941162][ T30] ============================================= [ 430.941162][ T30] [ 430.986261][ T30] NMI backtrace for cpu 1 [ 430.990686][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc2-syzkaller-00006-g87d6aab2389e #0 [ 431.001421][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 431.011537][ T30] Call Trace: [ 431.015222][ T30] [ 431.018190][ T30] dump_stack_lvl+0x241/0x360 [ 431.022924][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 431.028273][ T30] ? __pfx__printk+0x10/0x10 [ 431.033115][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 431.038198][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 431.043716][ T30] ? _printk+0xd5/0x120 [ 431.047921][ T30] ? __pfx__printk+0x10/0x10 [ 431.052570][ T30] ? __wake_up_klogd+0xcc/0x110 [ 431.057642][ T30] ? __pfx__printk+0x10/0x10 [ 431.062319][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 431.067434][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 431.073618][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 431.079670][ T30] watchdog+0xff4/0x1040 [ 431.083947][ T30] ? watchdog+0x1ea/0x1040 [ 431.088418][ T30] ? __pfx_watchdog+0x10/0x10 [ 431.093144][ T30] kthread+0x2f0/0x390 [ 431.097249][ T30] ? __pfx_watchdog+0x10/0x10 [ 431.101964][ T30] ? __pfx_kthread+0x10/0x10 [ 431.106666][ T30] ret_from_fork+0x4b/0x80 [ 431.111135][ T30] ? __pfx_kthread+0x10/0x10 [ 431.115752][ T30] ret_from_fork_asm+0x1a/0x30 [ 431.120557][ T30] [ 431.123989][ T30] Sending NMI from CPU 1 to CPUs 0: [ 431.129646][ C0] NMI backtrace for cpu 0 [ 431.129662][ C0] CPU: 0 UID: 0 PID: 4666 Comm: klogd Not tainted 6.12.0-rc2-syzkaller-00006-g87d6aab2389e #0 [ 431.129683][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 431.129694][ C0] RIP: 0010:unwind_next_frame+0x6a4/0x22d0 [ 431.129718][ C0] Code: 09 00 00 4c 89 7c 24 28 48 8b 44 24 58 42 80 3c 20 00 74 08 4c 89 f7 e8 aa 07 ba 00 49 8b 2e e9 32 02 00 00 4d 89 ec 4d 89 ee <48> 89 e8 4c 29 f0 48 89 c1 48 c1 f9 02 48 c1 e8 3f 48 01 c8 48 83 [ 431.129739][ C0] RSP: 0018:ffffc9000340f110 EFLAGS: 00000287 [ 431.129756][ C0] RAX: ffffffff90815720 RBX: ffffffff90815724 RCX: ffffffff90815728 [ 431.129770][ C0] RDX: 00000000000b0001 RSI: ffffffff91211320 RDI: ffffffff814166e0 [ 431.129783][ C0] RBP: ffffffff90815720 R08: 0000000000000005 R09: ffffc9000340f2d0 [ 431.129796][ C0] R10: ffffc9000340f230 R11: ffffffff81809fb0 R12: ffffffff9081571c [ 431.129809][ C0] R13: ffffffff9081571c R14: ffffffff9081571c R15: ffffffff897e1820 [ 431.129822][ C0] FS: 00007f184e993380(0000) GS:ffff8880b8600000(0000) knlGS:0000000000000000 [ 431.129838][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 431.129850][ C0] CR2: 0000000020000080 CR3: 000000007edbe000 CR4: 00000000003526f0 [ 431.129865][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 431.129876][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 431.129887][ C0] Call Trace: [ 431.129893][ C0] [ 431.129899][ C0] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 431.129923][ C0] ? __pfx_lock_acquire+0x10/0x10 [ 431.129951][ C0] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 431.129972][ C0] ? nmi_handle+0x2a/0x5a0 [ 431.129997][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 431.130021][ C0] ? nmi_handle+0x14f/0x5a0 [ 431.130039][ C0] ? nmi_handle+0x2a/0x5a0 [ 431.130057][ C0] ? unwind_next_frame+0x6a4/0x22d0 [ 431.130073][ C0] ? default_do_nmi+0x63/0x160 [ 431.130096][ C0] ? exc_nmi+0x123/0x1f0 [ 431.130117][ C0] ? end_repeat_nmi+0xf/0x53 [ 431.130143][ C0] ? __sock_sendmsg+0x220/0x270 [ 431.130168][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 431.130192][ C0] ? unwind_next_frame+0xb0/0x22d0 [ 431.130208][ C0] ? unwind_next_frame+0x6a4/0x22d0 [ 431.130224][ C0] ? unwind_next_frame+0x6a4/0x22d0 [ 431.130242][ C0] ? unwind_next_frame+0x6a4/0x22d0 [ 431.130258][ C0] [ 431.130264][ C0] [ 431.130275][ C0] ? __sock_sendmsg+0x221/0x270 [ 431.130300][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10 [ 431.130321][ C0] arch_stack_walk+0x11c/0x150 [ 431.130342][ C0] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 431.130359][ C0] ? __sock_sendmsg+0x221/0x270 [ 431.130386][ C0] stack_trace_save+0x118/0x1d0 [ 431.130408][ C0] ? __pfx_stack_trace_save+0x10/0x10 [ 431.130435][ C0] save_stack+0xfb/0x1f0 [ 431.130460][ C0] ? __pfx_save_stack+0x10/0x10 [ 431.130483][ C0] ? free_unref_page+0xcd0/0xf00 [ 431.130504][ C0] ? __slab_free+0x31b/0x3d0 [ 431.130527][ C0] ? qlist_free_all+0x9a/0x140 [ 431.130549][ C0] ? kasan_quarantine_reduce+0x14f/0x170 [ 431.130572][ C0] ? __kasan_slab_alloc+0x23/0x80 [ 431.130596][ C0] ? __kmalloc_node_track_caller_noprof+0x1cd/0x440 [ 431.130616][ C0] ? kmalloc_reserve+0x111/0x2a0 [ 431.130639][ C0] ? __alloc_skb+0x1f3/0x440 [ 431.130654][ C0] ? alloc_skb_with_frags+0xc3/0x820 [ 431.130672][ C0] ? sock_alloc_send_pskb+0x91a/0xa60 [ 431.130693][ C0] ? unix_dgram_sendmsg+0x6d3/0x1f80 [ 431.130709][ C0] ? __sock_sendmsg+0x221/0x270 [ 431.130735][ C0] ? page_ext_get+0x20/0x2a0 [ 431.130762][ C0] __reset_page_owner+0x76/0x430 [ 431.130790][ C0] free_unref_page+0xcd0/0xf00 [ 431.130815][ C0] __slab_free+0x31b/0x3d0 [ 431.130845][ C0] ? __phys_addr+0xba/0x170 [ 431.130864][ C0] qlist_free_all+0x9a/0x140 [ 431.130888][ C0] kasan_quarantine_reduce+0x14f/0x170 [ 431.130913][ C0] __kasan_slab_alloc+0x23/0x80 [ 431.130939][ C0] __kmalloc_node_track_caller_noprof+0x1cd/0x440 [ 431.130958][ C0] ? __alloc_skb+0x1f3/0x440 [ 431.130975][ C0] ? __alloc_skb+0x1f3/0x440 [ 431.130991][ C0] kmalloc_reserve+0x111/0x2a0 [ 431.131010][ C0] __alloc_skb+0x1f3/0x440 [ 431.131026][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 431.131050][ C0] ? __pfx___alloc_skb+0x10/0x10 [ 431.131073][ C0] alloc_skb_with_frags+0xc3/0x820 [ 431.131098][ C0] sock_alloc_send_pskb+0x91a/0xa60 [ 431.131129][ C0] ? __pfx_sock_alloc_send_pskb+0x10/0x10 [ 431.131153][ C0] ? do_raw_spin_unlock+0x13c/0x8b0 [ 431.131180][ C0] unix_dgram_sendmsg+0x6d3/0x1f80 [ 431.131201][ C0] ? __pfx_smack_socket_sendmsg+0x10/0x10 [ 431.131226][ C0] ? tomoyo_socket_sendmsg_permission+0x288/0x420 [ 431.131256][ C0] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 431.131281][ C0] ? __pfx_unix_dgram_sendmsg+0x10/0x10 [ 431.131296][ C0] __sock_sendmsg+0x221/0x270 [ 431.131322][ C0] __sys_sendto+0x39b/0x4f0 [ 431.131341][ C0] ? __pfx___sys_sendto+0x10/0x10 [ 431.131370][ C0] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 431.131399][ C0] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 431.131429][ C0] __x64_sys_sendto+0xde/0x100 [ 431.131448][ C0] do_syscall_64+0xf3/0x230 [ 431.131465][ C0] ? clear_bhb_loop+0x35/0x90 [ 431.131481][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 431.131507][ C0] RIP: 0033:0x7f184eaf59b5 [ 431.131521][ C0] Code: 8b 44 24 08 48 83 c4 28 48 98 c3 48 98 c3 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 26 45 31 c9 45 31 c0 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 7a 48 8b 15 44 c4 0c 00 f7 d8 64 89 02 48 83 [ 431.131535][ C0] RSP: 002b:00007ffe56af2b18 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 431.131552][ C0] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f184eaf59b5 [ 431.131565][ C0] RDX: 000000000000004f RSI: 0000556165621cc0 RDI: 0000000000000003 [ 431.131576][ C0] RBP: 000055616561d910 R08: 0000000000000000 R09: 0000000000000000 [ 431.131587][ C0] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000013 [ 431.131598][ C0] R13: 00007f184ec83212 R14: 00007ffe56af2c18 R15: 0000000000000000 [ 431.131617][ C0] [ 431.131631][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.985 msecs [ 431.165383][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 431.165406][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.12.0-rc2-syzkaller-00006-g87d6aab2389e #0 [ 431.165441][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024 [ 431.165457][ T30] Call Trace: [ 431.165466][ T30] [ 431.165478][ T30] dump_stack_lvl+0x241/0x360 [ 431.165512][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 431.165537][ T30] ? __pfx__printk+0x10/0x10 [ 431.165571][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 431.165615][ T30] ? vscnprintf+0x5d/0x90 [ 431.165646][ T30] panic+0x349/0x880 [ 431.165681][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 431.165713][ T30] ? __pfx_panic+0x10/0x10 [ 431.165745][ T30] ? tick_nohz_tick_stopped+0x82/0xb0 [ 431.165773][ T30] ? __irq_work_queue_local+0x137/0x410 [ 431.165806][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 431.165832][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 431.165861][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 431.165898][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 431.165930][ T30] watchdog+0x1033/0x1040 [ 431.165964][ T30] ? watchdog+0x1ea/0x1040 [ 431.166002][ T30] ? __pfx_watchdog+0x10/0x10 [ 431.166032][ T30] kthread+0x2f0/0x390 [ 431.166056][ T30] ? __pfx_watchdog+0x10/0x10 [ 431.166086][ T30] ? __pfx_kthread+0x10/0x10 [ 431.166111][ T30] ret_from_fork+0x4b/0x80 [ 431.166145][ T30] ? __pfx_kthread+0x10/0x10 [ 431.166168][ T30] ret_from_fork_asm+0x1a/0x30 [ 431.166214][ T30] [ 431.883354][ T30] Kernel Offset: disabled [ 431.887692][ T30] Rebooting in 86400 seconds..