./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3509490472

<...>
Warning: Permanently added '10.128.10.7' (ED25519) to the list of known hosts.
execve("./syz-executor3509490472", ["./syz-executor3509490472"], 0x7ffe15d76ba0 /* 10 vars */) = 0
brk(NULL)                               = 0x555556add000
brk(0x555556addd00)                     = 0x555556addd00
arch_prctl(ARCH_SET_FS, 0x555556add380) = 0
set_tid_address(0x555556add650)         = 5048
set_robust_list(0x555556add660, 24)     = 0
rseq(0x555556addca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor3509490472", 4096) = 28
getrandom("\x17\x4f\xd8\x26\x51\xe7\xb3\x43", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555556addd00
brk(0x555556afed00)                     = 0x555556afed00
brk(0x555556aff000)                     = 0x555556aff000
mprotect(0x7febc1250000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556add650) = 5049
./strace-static-x86_64: Process 5049 attached
[pid  5048] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5049] set_robust_list(0x555556add660, 24) = 0
./strace-static-x86_64: Process 5050 attached
[pid  5048] <... clone resumed>, child_tidptr=0x555556add650) = 5050
[pid  5050] set_robust_list(0x555556add660, 24 <unfinished ...>
[pid  5049] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5048] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5050] <... set_robust_list resumed>) = 0
./strace-static-x86_64: Process 5052 attached
./strace-static-x86_64: Process 5051 attached
[pid  5050] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5052] set_robust_list(0x555556add660, 24 <unfinished ...>
[pid  5051] set_robust_list(0x555556add660, 24 <unfinished ...>
[pid  5048] <... clone resumed>, child_tidptr=0x555556add650) = 5052
./strace-static-x86_64: Process 5053 attached
[pid  5052] <... set_robust_list resumed>) = 0
[pid  5051] <... set_robust_list resumed>) = 0
[pid  5049] <... clone resumed>, child_tidptr=0x555556add650) = 5051
[pid  5048] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5053] set_robust_list(0x555556add660, 24 <unfinished ...>
[pid  5051] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5050] <... clone resumed>, child_tidptr=0x555556add650) = 5053
[pid  5052] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5051] <... prctl resumed>)        = 0
[pid  5051] setpgid(0, 0./strace-static-x86_64: Process 5055 attached
./strace-static-x86_64: Process 5054 attached
 <unfinished ...>
[pid  5053] <... set_robust_list resumed>) = 0
[pid  5048] <... clone resumed>, child_tidptr=0x555556add650) = 5055
[pid  5055] set_robust_list(0x555556add660, 24 <unfinished ...>
[pid  5054] set_robust_list(0x555556add660, 24 <unfinished ...>
[pid  5052] <... clone resumed>, child_tidptr=0x555556add650) = 5054
[pid  5051] <... setpgid resumed>)      = 0
[pid  5053] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5048] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5055] <... set_robust_list resumed>) = 0
[pid  5051] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5054] <... set_robust_list resumed>) = 0
[pid  5055] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5056 attached
 <unfinished ...>
[pid  5054] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5053] <... prctl resumed>)        = 0
[pid  5051] <... openat resumed>)       = 3
[pid  5051] write(3, "1000", 4 <unfinished ...>
[pid  5053] setpgid(0, 0 <unfinished ...>
[pid  5054] <... prctl resumed>)        = 0
[pid  5053] <... setpgid resumed>)      = 0
[pid  5048] <... clone resumed>, child_tidptr=0x555556add650) = 5056
[pid  5051] <... write resumed>)        = 4
[pid  5054] setpgid(0, 0 <unfinished ...>
[pid  5051] close(3./strace-static-x86_64: Process 5057 attached
 <unfinished ...>
[pid  5053] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5057] set_robust_list(0x555556add660, 24 <unfinished ...>
[pid  5055] <... clone resumed>, child_tidptr=0x555556add650) = 5057
[pid  5054] <... setpgid resumed>)      = 0
[pid  5051] <... close resumed>)        = 0
[pid  5057] <... set_robust_list resumed>) = 0
[pid  5053] <... openat resumed>)       = 3
[pid  5057] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5051] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT <unfinished ...>
[pid  5056] set_robust_list(0x555556add660, 24 <unfinished ...>
[pid  5057] <... prctl resumed>)        = 0
[pid  5056] <... set_robust_list resumed>) = 0
[pid  5054] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5057] setpgid(0, 0 <unfinished ...>
[pid  5056] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5053] write(3, "1000", 4 <unfinished ...>
[pid  5057] <... setpgid resumed>)      = 0
[pid  5053] <... write resumed>)        = 4
[pid  5057] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5051] <... openat resumed>)       = 3
./strace-static-x86_64: Process 5058 attached
[pid  5054] <... openat resumed>)       = 3
[pid  5053] close(3 <unfinished ...>
[pid  5051] dup(3 <unfinished ...>
[pid  5058] set_robust_list(0x555556add660, 24 <unfinished ...>
[pid  5057] <... openat resumed>)       = 3
[pid  5056] <... clone resumed>, child_tidptr=0x555556add650) = 5058
[pid  5054] write(3, "1000", 4 <unfinished ...>
[pid  5053] <... close resumed>)        = 0
[pid  5051] <... dup resumed>)          = 4
[pid  5058] <... set_robust_list resumed>) = 0
[pid  5057] write(3, "1000", 4 <unfinished ...>
[pid  5054] <... write resumed>)        = 4
[pid  5053] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT <unfinished ...>
[pid  5051] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5058] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5057] <... write resumed>)        = 4
[pid  5054] close(3 <unfinished ...>
[pid  5057] close(3 <unfinished ...>
[pid  5058] <... prctl resumed>)        = 0
[pid  5057] <... close resumed>)        = 0
[pid  5054] <... close resumed>)        = 0
[pid  5053] <... openat resumed>)       = 3
[pid  5058] setpgid(0, 0 <unfinished ...>
[pid  5057] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT <unfinished ...>
[pid  5054] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT <unfinished ...>
[pid  5053] dup(3 <unfinished ...>
[pid  5058] <... setpgid resumed>)      = 0
[pid  5057] <... openat resumed>)       = 3
[pid  5054] <... openat resumed>)       = 3
[pid  5053] <... dup resumed>)          = 4
[pid  5058] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5057] dup(3 <unfinished ...>
[pid  5058] <... openat resumed>)       = 3
[pid  5057] <... dup resumed>)          = 4
[pid  5054] dup(3 <unfinished ...>
[pid  5053] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5058] write(3, "1000", 4 <unfinished ...>
[pid  5057] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5058] <... write resumed>)        = 4
[pid  5054] <... dup resumed>)          = 4
[pid  5054] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5058] close(3)                    = 0
[pid  5058] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3
[pid  5058] dup(3)                      = 4
[pid  5058] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5050] kill(-5053, SIGKILL)        = 0
[pid  5050] kill(5053, SIGKILL)         = 0
[pid  5052] kill(-5054, SIGKILL <unfinished ...>
[pid  5049] kill(-5051, SIGKILL <unfinished ...>
[pid  5052] <... kill resumed>)         = 0
[pid  5049] <... kill resumed>)         = 0
[pid  5052] kill(5054, SIGKILL <unfinished ...>
[pid  5049] kill(5051, SIGKILL <unfinished ...>
[pid  5052] <... kill resumed>)         = 0
[pid  5049] <... kill resumed>)         = 0
[pid  5055] kill(-5057, SIGKILL)        = 0
[pid  5055] kill(5057, SIGKILL)         = 0
[pid  5056] kill(-5058, SIGKILL)        = 0
[pid  5056] kill(5058, SIGKILL)         = 0
[pid  5056] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5050] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5052] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5055] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5049] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5050] <... openat resumed>)       = 3
[pid  5055] <... openat resumed>)       = 3
[pid  5055] newfstatat(3, "",  <unfinished ...>
[pid  5050] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5055] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5050] getdents64(3,  <unfinished ...>
[pid  5055] getdents64(3, 0x555556ade6f0 /* 2 entries */, 32768) = 48
[pid  5050] <... getdents64 resumed>0x555556ade6f0 /* 2 entries */, 32768) = 48
[pid  5055] getdents64(3,  <unfinished ...>
[pid  5050] getdents64(3,  <unfinished ...>
[pid  5055] <... getdents64 resumed>0x555556ade6f0 /* 0 entries */, 32768) = 0
[pid  5050] <... getdents64 resumed>0x555556ade6f0 /* 0 entries */, 32768) = 0
[pid  5055] close(3 <unfinished ...>
[pid  5050] close(3)                    = 0
[pid  5055] <... close resumed>)        = 0
[pid  5052] <... openat resumed>)       = 3
[pid  5049] <... openat resumed>)       = 3
[pid  5049] newfstatat(3, "",  <unfinished ...>
[pid  5052] newfstatat(3, "",  <unfinished ...>
[pid  5049] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5052] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5049] getdents64(3,  <unfinished ...>
[pid  5052] getdents64(3,  <unfinished ...>
[pid  5049] <... getdents64 resumed>0x555556ade6f0 /* 2 entries */, 32768) = 48
[pid  5052] <... getdents64 resumed>0x555556ade6f0 /* 2 entries */, 32768) = 48
[pid  5049] getdents64(3,  <unfinished ...>
[pid  5052] getdents64(3,  <unfinished ...>
[pid  5049] <... getdents64 resumed>0x555556ade6f0 /* 0 entries */, 32768) = 0
[pid  5049] close(3 <unfinished ...>
[pid  5052] <... getdents64 resumed>0x555556ade6f0 /* 0 entries */, 32768) = 0
[pid  5052] close(3 <unfinished ...>
[pid  5049] <... close resumed>)        = 0
[pid  5052] <... close resumed>)        = 0
[pid  5056] <... openat resumed>)       = 3
[pid  5056] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5056] getdents64(3, 0x555556ade6f0 /* 2 entries */, 32768) = 48
[pid  5056] getdents64(3, 0x555556ade6f0 /* 0 entries */, 32768) = 0
[pid  5056] close(3)                    = 0
[   76.916611][    T9] cfg80211: failed to load regulatory.db
[pid  5051] <... fallocate resumed>)    = ?
[pid  5051] +++ killed by SIGKILL +++
[pid  5049] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5051, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=5453 /* 54.53 s */} ---
[pid  5049] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5070 attached
, child_tidptr=0x555556add650) = 5070
[pid  5070] set_robust_list(0x555556add660, 24) = 0
[pid  5070] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5070] setpgid(0, 0)               = 0
[pid  5070] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5070] write(3, "1000", 4)         = 4
[pid  5070] close(3)                    = 0
[pid  5070] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3
[pid  5070] dup(3)                      = 4
[pid  5070] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5049] kill(-5070, SIGKILL)        = 0
[pid  5049] kill(5070, SIGKILL)         = 0
[pid  5049] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5049] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5049] getdents64(3, 0x555556ade6f0 /* 2 entries */, 32768) = 48
[pid  5049] getdents64(3, 0x555556ade6f0 /* 0 entries */, 32768) = 0
[pid  5049] close(3)                    = 0
[pid  5053] <... fallocate resumed>)    = ?
[pid  5053] +++ killed by SIGKILL +++
[pid  5050] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5053, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=5452 /* 54.52 s */} ---
[pid  5050] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5071 attached
, child_tidptr=0x555556add650) = 5071
[pid  5071] set_robust_list(0x555556add660, 24) = 0
[pid  5071] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5071] setpgid(0, 0)               = 0
[pid  5071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5071] write(3, "1000", 4)         = 4
[pid  5071] close(3)                    = 0
[pid  5071] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3
[pid  5071] dup(3)                      = 4
[pid  5071] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5050] kill(-5071, SIGKILL)        = 0
[pid  5050] kill(5071, SIGKILL)         = 0
[pid  5050] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5050] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5050] getdents64(3, 0x555556ade6f0 /* 2 entries */, 32768) = 48
[pid  5050] getdents64(3, 0x555556ade6f0 /* 0 entries */, 32768) = 0
[pid  5050] close(3)                    = 0
[pid  5057] <... fallocate resumed>)    = ?
[pid  5057] +++ killed by SIGKILL +++
[pid  5055] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5057, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=5593 /* 55.93 s */} ---
[pid  5055] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5078 attached
, child_tidptr=0x555556add650) = 5078
[pid  5078] set_robust_list(0x555556add660, 24) = 0
[pid  5078] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5078] setpgid(0, 0)               = 0
[pid  5078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5078] write(3, "1000", 4)         = 4
[pid  5078] close(3)                    = 0
[pid  5078] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_DIRECT) = 3
[pid  5078] dup(3)                      = 4
[  286.751759][   T29] INFO: task syz-executor350:5058 blocked for more than 143 seconds.
[  286.760099][   T29]       Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0
[  286.768812][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.791688][   T29] task:syz-executor350 state:D stack:25872 pid:5058  tgid:5058  ppid:5056   flags:0x00004006
[  286.822721][   T29] Call Trace:
[  286.843120][   T29]  <TASK>
[  286.851294][   T29]  __schedule+0x177f/0x4960
[  286.865939][   T29]  ? release_firmware_map_entry+0x190/0x190
[  286.882592][   T29]  ? __lock_acquire+0x1fd0/0x1fd0
[  286.914798][   T29]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  286.920847][   T29]  ? print_irqtrace_events+0x220/0x220
[  286.942349][   T29]  ? _raw_spin_lock_irq+0xdf/0x120
[  286.948475][   T29]  ? schedule+0x8e/0x260
[  286.966180][   T29]  schedule+0x149/0x260
[  286.973926][   T29]  schedule_preempt_disabled+0x13/0x20
[  287.003835][   T29]  rwsem_down_write_slowpath+0xeea/0x13b0
[pid  5078] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 17592202829824 <unfinished ...>
[pid  5055] kill(-5078, SIGKILL)        = 0
[pid  5055] kill(5078, SIGKILL)         = 0
[  287.018843][   T29]  ? rwsem_down_write_slowpath+0xa05/0x13b0
[  287.025334][   T29]  ? down_write_killable_nested+0x80/0x80
[  287.031577][   T29]  ? read_lock_is_recursive+0x20/0x20
[  287.037424][   T29]  __down_write_common+0x1aa/0x200
[  287.043456][   T29]  ? clear_nonspinnable+0x60/0x60
[  287.053805][   T29]  blkdev_fallocate+0x22a/0x570
[  287.074144][   T29]  vfs_fallocate+0x55c/0x6c0
[  287.078873][   T29]  __x64_sys_fallocate+0xbd/0x100
[  287.095434][   T29]  do_syscall_64+0xf5/0x230
[  287.100292][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  287.106555][   T29] RIP: 0033:0x7febc11ddb29
[  287.111080][   T29] RSP: 002b:00007ffc6ba39ad8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  287.120160][   T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007febc11ddb29
[  287.128758][   T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004
[  287.137441][   T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0
[  287.145917][   T29] R10: 0000100001002000 R11: 0000000000000246 R12: 0000000000000001
[  287.154759][   T29] R13: 00007ffc6ba39cf8 R14: 00007ffc6ba39b00 R15: 00007ffc6ba39af0
[  287.163267][   T29]  </TASK>
[  287.166761][   T29] INFO: task syz-executor350:5070 blocked for more than 143 seconds.
[  287.175293][   T29]       Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0
[  287.201539][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  287.234855][   T29] task:syz-executor350 state:D stack:23288 pid:5070  tgid:5070  ppid:5049   flags:0x00004006
[  287.245572][   T29] Call Trace:
[  287.249280][   T29]  <TASK>
[  287.253032][   T29]  __schedule+0x177f/0x4960
[  287.258366][   T29]  ? preempt_schedule_notrace_thunk+0x1a/0x30
[  287.265415][   T29]  ? release_firmware_map_entry+0x190/0x190
[  287.272222][   T29]  ? __lock_acquire+0x1fd0/0x1fd0
[  287.277713][   T29]  ? schedule+0x8e/0x260
[  287.282855][   T29]  schedule+0x149/0x260
[  287.287818][   T29]  schedule_preempt_disabled+0x13/0x20
[  287.294121][   T29]  rwsem_down_write_slowpath+0xeea/0x13b0
[  287.300639][   T29]  ? rwsem_down_write_slowpath+0xa05/0x13b0
[  287.307065][   T29]  ? down_write_killable_nested+0x80/0x80
[  287.313286][   T29]  ? read_lock_is_recursive+0x20/0x20
[  287.319121][   T29]  __down_write_common+0x1aa/0x200
[  287.325099][   T29]  ? clear_nonspinnable+0x60/0x60
[  287.330936][   T29]  blkdev_fallocate+0x22a/0x570
[  287.336629][   T29]  vfs_fallocate+0x55c/0x6c0
[  287.341766][   T29]  __x64_sys_fallocate+0xbd/0x100
[  287.347718][   T29]  do_syscall_64+0xf5/0x230
[  287.353086][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  287.359788][   T29] RIP: 0033:0x7febc11ddb29
[  287.365075][   T29] RSP: 002b:00007ffc6ba39ad8 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  287.374324][   T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007febc11ddb29
[  287.382817][   T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004
[  287.391219][   T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0
[  287.399649][   T29] R10: 0000100001002000 R11: 0000000000000246 R12: 000000000000e29e
[  287.408535][   T29] R13: 00007ffc6ba39aec R14: 00007ffc6ba39b00 R15: 00007ffc6ba39af0
[  287.417382][   T29]  </TASK>
[  287.421230][   T29] 
[  287.421230][   T29] Showing all locks held in the system:
[  287.480838][   T29] 2 locks held by ksoftirqd/1/22:
[  287.501599][   T29] 1 lock held by khungtaskd/29:
[  287.506498][   T29]  #0: ffffffff8d92ef20 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0
[pid  5055] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[  287.581766][   T29] 1 lock held by klogd/4492:
[  287.586413][   T29] 2 locks held by getty/4800:
[pid  5055] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5055] getdents64(3, 0x555556ade6f0 /* 2 entries */, 32768) = 48
[pid  5055] getdents64(3, 0x555556ade6f0 /* 0 entries */, 32768) = 0
[pid  5055] close(3)                    = 0
[  287.621664][   T29]  #0: ffff888029cd00a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  287.637539][   T29]  #1: ffffc90002efe2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b4/0x1e10
[  287.665816][   T29] 1 lock held by syz-executor350/5054:
[  287.671617][   T29] 1 lock held by syz-executor350/5058:
[  287.677472][   T29]  #0: ffff88801b54abc0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x570
[  287.721562][   T29] 1 lock held by syz-executor350/5070:
[  287.727097][   T29]  #0: ffff88801b54abc0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x570
[  287.738267][   T29] 1 lock held by syz-executor350/5071:
[  287.744388][   T29]  #0: ffff88801b54abc0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x570
[  287.755521][   T29] 1 lock held by syz-executor350/5078:
[  287.761388][   T29]  #0: ffff88801b54abc0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x570
[  287.772489][   T29] 
[  287.775033][   T29] =============================================
[  287.775033][   T29] 
[  287.787365][   T29] NMI backtrace for cpu 0
[  287.791731][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0
[  287.801554][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  287.811629][   T29] Call Trace:
[  287.814929][   T29]  <TASK>
[  287.817873][   T29]  dump_stack_lvl+0x1e7/0x2d0
[  287.822573][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  287.827974][   T29]  ? tcp_gro_dev_warn+0x260/0x260
[  287.833027][   T29]  ? panic+0x850/0x850
[  287.837143][   T29]  ? vprintk_emit+0x607/0x720
[  287.841949][   T29]  ? printk_sprint+0x480/0x480
[  287.846754][   T29]  nmi_cpu_backtrace+0x498/0x4d0
[  287.851836][   T29]  ? nmi_trigger_cpumask_backtrace+0x310/0x310
[  287.858012][   T29]  ? _printk+0xd5/0x120
[  287.862191][   T29]  ? panic+0x850/0x850
[  287.866295][   T29]  ? __wake_up_klogd+0xcc/0x100
[  287.871175][   T29]  ? panic+0x850/0x850
[  287.875267][   T29]  ? __rcu_read_unlock+0x98/0x100
[  287.880319][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  287.886439][   T29]  nmi_trigger_cpumask_backtrace+0x198/0x310
[  287.892449][   T29]  watchdog+0xfaf/0xff0
[  287.896659][   T29]  ? watchdog+0x1e9/0xff0
[  287.901020][   T29]  kthread+0x2d3/0x370
[  287.905132][   T29]  ? hungtask_pm_notify+0x90/0x90
[  287.910188][   T29]  ? kthread_blkcg+0xd0/0xd0
[  287.914816][   T29]  ret_from_fork+0x48/0x80
[  287.919268][   T29]  ? kthread_blkcg+0xd0/0xd0
[  287.923895][   T29]  ret_from_fork_asm+0x11/0x20
[  287.928754][   T29]  </TASK>
[  287.932232][   T29] Sending NMI from CPU 0 to CPUs 1:
[  287.937475][    C1] NMI backtrace for cpu 1
[  287.937489][    C1] CPU: 1 PID: 4492 Comm: klogd Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0
[  287.937505][    C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  287.937513][    C1] RIP: 0010:__list_add_valid_or_report+0x60/0xf0
[  287.937565][    C1] Code: 48 89 d8 48 c1 e8 03 42 80 3c 28 00 74 08 48 89 df e8 a4 e2 57 fd 48 8b 13 4c 39 e2 75 6b 4c 89 e0 48 c1 e8 03 42 80 3c 28 00 <74> 08 4c 89 e7 e8 86 e2 57 fd 49 8b 14 24 4c 39 f2 75 61 4d 39 e7
[  287.937582][    C1] RSP: 0018:ffffc90003177558 EFLAGS: 00000046
[  287.937596][    C1] RAX: 1ffffd400047d832 RBX: ffff88801e505150 RCX: 0000000000000001
[  287.937606][    C1] RDX: ffffea00023ec190 RSI: ffffea00023ec190 RDI: ffffea00023f5fd0
[  287.937617][    C1] RBP: ffffea00023ec190 R08: 0000000000000003 R09: fffff5200062ee94
[  287.937627][    C1] R10: dffffc0000000000 R11: fffff5200062ee94 R12: ffffea00023ec190
[  287.937637][    C1] R13: dffffc0000000000 R14: ffff88801e505148 R15: ffffea00023f5fd0
[  287.937648][    C1] FS:  00007f2a1c273380(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000
[  287.937661][    C1] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  287.937671][    C1] CR2: 00007f12e7cb4580 CR3: 0000000024c67000 CR4: 00000000003506f0
[  287.937683][    C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  287.937691][    C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  287.937700][    C1] Call Trace:
[  287.937706][    C1]  <NMI>
[  287.937712][    C1]  ? nmi_cpu_backtrace+0x3be/0x4d0
[  287.937734][    C1]  ? read_lock_is_recursive+0x20/0x20
[  287.937754][    C1]  ? nmi_trigger_cpumask_backtrace+0x310/0x310
[  287.937775][    C1]  ? nmi_handle+0x2a/0x570
[  287.937801][    C1]  ? nmi_cpu_backtrace_handler+0xc/0x10
[  287.937820][    C1]  ? nmi_handle+0x14c/0x570
[  287.937836][    C1]  ? nmi_handle+0x2a/0x570
[  287.937854][    C1]  ? __list_add_valid_or_report+0x60/0xf0
[  287.937868][    C1]  ? default_do_nmi+0x63/0x150
[  287.937895][    C1]  ? exc_nmi+0x121/0x210
[  287.937914][    C1]  ? end_repeat_nmi+0xf/0x2a
[  287.937936][    C1]  ? __list_add_valid_or_report+0x60/0xf0
[  287.937951][    C1]  ? __list_add_valid_or_report+0x60/0xf0
[  287.937966][    C1]  ? __list_add_valid_or_report+0x60/0xf0
[  287.937980][    C1]  </NMI>
[  287.937984][    C1]  <TASK>
[  287.937990][    C1]  add_partial+0x50/0xf0
[  287.938012][    C1]  __put_partials+0x89/0x130
[  287.938028][    C1]  put_cpu_partial+0x17b/0x250
[  287.938043][    C1]  ? put_cpu_partial+0x70/0x250
[  287.938060][    C1]  __slab_free+0x2fe/0x410
[  287.938080][    C1]  qlist_free_all+0x6d/0xd0
[  287.938097][    C1]  kasan_quarantine_reduce+0x14b/0x160
[  287.938114][    C1]  __kasan_slab_alloc+0x23/0x70
[  287.938134][    C1]  kmem_cache_alloc_node+0x18f/0x380
[  287.938154][    C1]  ? __alloc_skb+0x181/0x420
[  287.938196][    C1]  __alloc_skb+0x181/0x420
[  287.938211][    C1]  ? validate_chain+0x11c/0x5ab0
[  287.938230][    C1]  ? napi_build_skb+0x270/0x270
[  287.938249][    C1]  alloc_skb_with_frags+0xc3/0x780
[  287.938275][    C1]  sock_alloc_send_pskb+0x919/0xa50
[  287.938304][    C1]  ? sock_kzfree_s+0x60/0x60
[  287.938326][    C1]  ? do_raw_spin_unlock+0x13b/0x8b0
[  287.938349][    C1]  unix_dgram_sendmsg+0x696/0x2200
[  287.938426][    C1]  ? tomoyo_socket_sendmsg_permission+0x287/0x410
[  287.938459][    C1]  ? unix_dgram_poll+0x6c0/0x6c0
[  287.938484][    C1]  ? bpf_lsm_socket_sendmsg+0x9/0x10
[  287.938508][    C1]  ? security_socket_sendmsg+0x81/0xa0
[  287.938523][    C1]  ? unix_dgram_poll+0x6c0/0x6c0
[  287.938544][    C1]  __sys_sendto+0x440/0x600
[  287.938562][    C1]  ? __ia32_sys_getpeername+0x90/0x90
[  287.938596][    C1]  ? lockdep_hardirqs_on_prepare+0x43c/0x780
[  287.938615][    C1]  ? print_irqtrace_events+0x220/0x220
[  287.938634][    C1]  __x64_sys_sendto+0xde/0xf0
[  287.938651][    C1]  do_syscall_64+0xf5/0x230
[  287.938672][    C1]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  287.938688][    C1] RIP: 0033:0x7f2a1c3d59b5
[  287.938700][    C1] Code: 8b 44 24 08 48 83 c4 28 48 98 c3 48 98 c3 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 26 45 31 c9 45 31 c0 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 7a 48 8b 15 44 c4 0c 00 f7 d8 64 89 02 48 83
[  287.938710][    C1] RSP: 002b:00007ffdf9bf33e8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c
[  287.938725][    C1] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f2a1c3d59b5
[  287.938734][    C1] RDX: 000000000000005b RSI: 00005629b399dcc0 RDI: 0000000000000003
[  287.938743][    C1] RBP: 00005629b3999910 R08: 0000000000000000 R09: 0000000000000000
[  287.938752][    C1] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000013
[  287.938760][    C1] R13: 00007f2a1c563212 R14: 00007ffdf9bf34e8 R15: 0000000000000000
[  287.938778][    C1]  </TASK>
[  287.938785][    C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.310 msecs
[  288.412157][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  288.419053][   T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.8.0-rc1-syzkaller-00311-g3a5879d495b2 #0
[  288.428884][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023
[  288.438963][   T29] Call Trace:
[  288.442262][   T29]  <TASK>
[  288.445382][   T29]  dump_stack_lvl+0x1e7/0x2d0
[  288.450092][   T29]  ? tcp_gro_dev_warn+0x260/0x260
[  288.455136][   T29]  ? panic+0x850/0x850
[  288.459229][   T29]  ? vscnprintf+0x5d/0x80
[  288.463608][   T29]  panic+0x349/0x850
[  288.467528][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x310
[  288.473710][   T29]  ? __memcpy_flushcache+0x2b0/0x2b0
[  288.479018][   T29]  ? arch_trigger_cpumask_backtrace+0x10/0x10
[  288.485106][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  288.490477][   T29]  ? nmi_trigger_cpumask_backtrace+0x244/0x310
[  288.496628][   T29]  ? nmi_trigger_cpumask_backtrace+0x2c7/0x310
[  288.502782][   T29]  ? nmi_trigger_cpumask_backtrace+0x2cc/0x310
[  288.509017][   T29]  watchdog+0xfee/0xff0
[  288.513180][   T29]  ? watchdog+0x1e9/0xff0
[  288.517947][   T29]  kthread+0x2d3/0x370
[  288.522022][   T29]  ? hungtask_pm_notify+0x90/0x90
[  288.527053][   T29]  ? kthread_blkcg+0xd0/0xd0
[  288.531640][   T29]  ret_from_fork+0x48/0x80
[  288.536060][   T29]  ? kthread_blkcg+0xd0/0xd0
[  288.540642][   T29]  ret_from_fork_asm+0x11/0x20
[  288.545412][   T29]  </TASK>
[  288.548505][   T29] Kernel Offset: disabled
[  288.552822][   T29] Rebooting in 86400 seconds..