./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1651437663 <...> Warning: Permanently added '10.128.0.239' (ED25519) to the list of known hosts. execve("./syz-executor1651437663", ["./syz-executor1651437663"], 0x7ffd732d24f0 /* 10 vars */) = 0 brk(NULL) = 0x555555a2b000 brk(0x555555a2bd00) = 0x555555a2bd00 arch_prctl(ARCH_SET_FS, 0x555555a2b380) = 0 set_tid_address(0x555555a2b650) = 5060 set_robust_list(0x555555a2b660, 24) = 0 rseq(0x555555a2bca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor1651437663", 4096) = 28 getrandom("\x8a\x18\x20\x55\x4c\x44\xf8\x8b", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555555a2bd00 brk(0x555555a4cd00) = 0x555555a4cd00 brk(0x555555a4d000) = 0x555555a4d000 mprotect(0x7f7d8ce60000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5061 attached , child_tidptr=0x555555a2b650) = 5061 [pid 5060] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5061] set_robust_list(0x555555a2b660, 24) = 0 [pid 5061] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5062 attached [pid 5060] <... clone resumed>, child_tidptr=0x555555a2b650) = 5062 [pid 5062] set_robust_list(0x555555a2b660, 24 [pid 5060] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5062] <... set_robust_list resumed>) = 0 [pid 5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5064 attached ./strace-static-x86_64: Process 5063 attached [pid 5060] <... clone resumed>, child_tidptr=0x555555a2b650) = 5064 [pid 5060] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5066 attached ./strace-static-x86_64: Process 5065 attached [pid 5064] set_robust_list(0x555555a2b660, 24 [pid 5063] set_robust_list(0x555555a2b660, 24 [pid 5061] <... clone resumed>, child_tidptr=0x555555a2b650) = 5063 [pid 5060] <... clone resumed>, child_tidptr=0x555555a2b650) = 5065 [pid 5065] set_robust_list(0x555555a2b660, 24 [pid 5064] <... set_robust_list resumed>) = 0 [pid 5063] <... set_robust_list resumed>) = 0 [pid 5060] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5066] set_robust_list(0x555555a2b660, 24 [pid 5065] <... set_robust_list resumed>) = 0 [pid 5064] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5063] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5062] <... clone resumed>, child_tidptr=0x555555a2b650) = 5066 [pid 5066] <... set_robust_list resumed>) = 0 [pid 5065] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5066] prctl(PR_SET_PDEATHSIG, SIGKILL./strace-static-x86_64: Process 5069 attached ./strace-static-x86_64: Process 5068 attached ./strace-static-x86_64: Process 5067 attached ) = 0 [pid 5063] <... prctl resumed>) = 0 [pid 5060] <... clone resumed>, child_tidptr=0x555555a2b650) = 5069 [pid 5069] set_robust_list(0x555555a2b660, 24 [pid 5067] set_robust_list(0x555555a2b660, 24 [pid 5066] setpgid(0, 0 [pid 5068] set_robust_list(0x555555a2b660, 24 [pid 5063] setpgid(0, 0 [pid 5065] <... clone resumed>, child_tidptr=0x555555a2b650) = 5068 [pid 5060] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5069] <... set_robust_list resumed>) = 0 [pid 5067] <... set_robust_list resumed>) = 0 [pid 5066] <... setpgid resumed>) = 0 [pid 5064] <... clone resumed>, child_tidptr=0x555555a2b650) = 5067 [pid 5063] <... setpgid resumed>) = 0 [pid 5068] <... set_robust_list resumed>) = 0 [pid 5069] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5066] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5063] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC./strace-static-x86_64: Process 5070 attached [pid 5068] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5067] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5066] <... openat resumed>) = 3 [pid 5063] <... openat resumed>) = 3 [pid 5060] <... clone resumed>, child_tidptr=0x555555a2b650) = 5070 [pid 5070] set_robust_list(0x555555a2b660, 24 [pid 5067] <... prctl resumed>) = 0 [pid 5066] write(3, "1000", 4 [pid 5070] <... set_robust_list resumed>) = 0 [pid 5067] setpgid(0, 0 [pid 5066] <... write resumed>) = 4 [pid 5070] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD [pid 5067] <... setpgid resumed>) = 0 [pid 5066] close(3 [pid 5067] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5066] <... close resumed>) = 0 ./strace-static-x86_64: Process 5071 attached ./strace-static-x86_64: Process 5072 attached [pid 5068] <... prctl resumed>) = 0 [pid 5067] <... openat resumed>) = 3 [pid 5066] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5063] write(3, "1000", 4 [pid 5071] set_robust_list(0x555555a2b660, 24 [pid 5070] <... clone resumed>, child_tidptr=0x555555a2b650) = 5072 [pid 5069] <... clone resumed>, child_tidptr=0x555555a2b650) = 5071 [pid 5068] setpgid(0, 0 [pid 5067] write(3, "1000", 4 [pid 5063] <... write resumed>) = 4 [pid 5072] set_robust_list(0x555555a2b660, 24 [pid 5071] <... set_robust_list resumed>) = 0 [pid 5068] <... setpgid resumed>) = 0 [pid 5067] <... write resumed>) = 4 [pid 5066] <... openat resumed>) = 3 [pid 5063] close(3 [pid 5072] <... set_robust_list resumed>) = 0 [pid 5071] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5068] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5067] close(3 [pid 5063] <... close resumed>) = 0 [pid 5072] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5068] <... openat resumed>) = 3 [pid 5063] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5067] <... close resumed>) = 0 [pid 5071] <... prctl resumed>) = 0 [pid 5072] <... prctl resumed>) = 0 [pid 5066] dup(3 [pid 5072] setpgid(0, 0 [pid 5066] <... dup resumed>) = 4 [pid 5072] <... setpgid resumed>) = 0 [pid 5066] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5072] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5071] setpgid(0, 0 [pid 5068] write(3, "1000", 4 [pid 5067] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5063] <... openat resumed>) = 3 [pid 5072] <... openat resumed>) = 3 [pid 5071] <... setpgid resumed>) = 0 [pid 5068] <... write resumed>) = 4 [pid 5067] <... openat resumed>) = 3 [pid 5063] dup(3 [pid 5072] write(3, "1000", 4 [pid 5071] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC [pid 5068] close(3 [pid 5067] dup(3 [pid 5063] <... dup resumed>) = 4 [pid 5072] <... write resumed>) = 4 [pid 5071] <... openat resumed>) = 3 [pid 5068] <... close resumed>) = 0 [pid 5067] <... dup resumed>) = 4 [pid 5063] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5072] close(3 [pid 5071] write(3, "1000", 4 [pid 5068] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5067] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5072] <... close resumed>) = 0 [pid 5071] <... write resumed>) = 4 [pid 5068] <... openat resumed>) = 3 [pid 5072] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5071] close(3 [pid 5068] dup(3 [pid 5072] <... openat resumed>) = 3 [pid 5071] <... close resumed>) = 0 [pid 5072] dup(3 [pid 5071] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME [pid 5068] <... dup resumed>) = 4 [pid 5072] <... dup resumed>) = 4 [pid 5071] <... openat resumed>) = 3 [pid 5068] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5072] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5071] dup(3) = 4 [pid 5071] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5062] kill(-5066, SIGKILL [pid 5061] kill(-5063, SIGKILL [pid 5062] <... kill resumed>) = 0 [pid 5061] <... kill resumed>) = 0 [pid 5062] kill(5066, SIGKILL [pid 5061] kill(5063, SIGKILL [pid 5062] <... kill resumed>) = 0 [pid 5061] <... kill resumed>) = 0 [pid 5065] kill(-5068, SIGKILL [pid 5064] kill(-5067, SIGKILL [pid 5065] <... kill resumed>) = 0 [pid 5064] <... kill resumed>) = 0 [pid 5065] kill(5068, SIGKILL [pid 5064] kill(5067, SIGKILL [pid 5065] <... kill resumed>) = 0 [pid 5064] <... kill resumed>) = 0 [pid 5070] kill(-5072, SIGKILL [pid 5069] kill(-5071, SIGKILL [pid 5070] <... kill resumed>) = 0 [pid 5069] <... kill resumed>) = 0 [pid 5070] kill(5072, SIGKILL [pid 5069] kill(5071, SIGKILL [pid 5070] <... kill resumed>) = 0 [pid 5069] <... kill resumed>) = 0 [pid 5069] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5070] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5070] newfstatat(3, "", [pid 5069] newfstatat(3, "", [pid 5070] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5069] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5070] getdents64(3, [pid 5069] getdents64(3, [pid 5070] <... getdents64 resumed>0x555555a2c6f0 /* 2 entries */, 32768) = 48 [pid 5070] getdents64(3, [pid 5069] <... getdents64 resumed>0x555555a2c6f0 /* 2 entries */, 32768) = 48 [pid 5070] <... getdents64 resumed>0x555555a2c6f0 /* 0 entries */, 32768) = 0 [pid 5069] getdents64(3, [pid 5070] close(3 [pid 5069] <... getdents64 resumed>0x555555a2c6f0 /* 0 entries */, 32768) = 0 [pid 5070] <... close resumed>) = 0 [pid 5069] close(3) = 0 [pid 5061] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5061] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5061] getdents64(3, 0x555555a2c6f0 /* 2 entries */, 32768) = 48 [pid 5061] getdents64(3, 0x555555a2c6f0 /* 0 entries */, 32768) = 0 [pid 5061] close(3) = 0 [pid 5065] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5065] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5065] getdents64(3, [pid 5062] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5062] newfstatat(3, "", [pid 5065] <... getdents64 resumed>0x555555a2c6f0 /* 2 entries */, 32768) = 48 [pid 5062] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5065] getdents64(3, 0x555555a2c6f0 /* 0 entries */, 32768) = 0 [pid 5065] close(3 [pid 5062] getdents64(3, [pid 5065] <... close resumed>) = 0 [pid 5062] <... getdents64 resumed>0x555555a2c6f0 /* 2 entries */, 32768) = 48 [pid 5062] getdents64(3, [pid 5064] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY [pid 5062] <... getdents64 resumed>0x555555a2c6f0 /* 0 entries */, 32768) = 0 [pid 5062] close(3 [pid 5064] <... openat resumed>) = 3 [pid 5064] newfstatat(3, "", [pid 5062] <... close resumed>) = 0 [pid 5064] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5064] getdents64(3, 0x555555a2c6f0 /* 2 entries */, 32768) = 48 [pid 5064] getdents64(3, 0x555555a2c6f0 /* 0 entries */, 32768) = 0 [pid 5064] close(3) = 0 [ 86.863752][ T1136] cfg80211: failed to load regulatory.db [pid 5066] <... fallocate resumed>) = ? [pid 5066] +++ killed by SIGKILL +++ [pid 5062] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5066, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=7473 /* 74.73 s */} --- [pid 5062] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5090 attached , child_tidptr=0x555555a2b650) = 5090 [pid 5090] set_robust_list(0x555555a2b660, 24) = 0 [pid 5090] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5090] setpgid(0, 0) = 0 [pid 5090] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5090] write(3, "1000", 4) = 4 [pid 5090] close(3) = 0 [pid 5090] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3 [pid 5090] dup(3) = 4 [pid 5090] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5062] kill(-5090, SIGKILL) = 0 [pid 5062] kill(5090, SIGKILL) = 0 [pid 5062] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5062] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5062] getdents64(3, 0x555555a2c6f0 /* 2 entries */, 32768) = 48 [pid 5062] getdents64(3, 0x555555a2c6f0 /* 0 entries */, 32768) = 0 [pid 5062] close(3) = 0 [pid 5063] <... fallocate resumed>) = ? [pid 5063] +++ killed by SIGKILL +++ [pid 5061] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5063, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=7461 /* 74.61 s */} --- [pid 5061] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5097 attached , child_tidptr=0x555555a2b650) = 5097 [pid 5097] set_robust_list(0x555555a2b660, 24) = 0 [pid 5097] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5097] setpgid(0, 0) = 0 [pid 5097] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5097] write(3, "1000", 4) = 4 [pid 5097] close(3) = 0 [pid 5097] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3 [pid 5097] dup(3) = 4 [pid 5097] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 [pid 5061] kill(-5097, SIGKILL) = 0 [pid 5061] kill(5097, SIGKILL) = 0 [pid 5061] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5061] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5061] getdents64(3, 0x555555a2c6f0 /* 2 entries */, 32768) = 48 [pid 5061] getdents64(3, 0x555555a2c6f0 /* 0 entries */, 32768) = 0 [pid 5061] close(3) = 0 [ 286.527833][ T29] INFO: task syz-executor165:5068 blocked for more than 143 seconds. [ 286.536459][ T29] Not tainted 6.6.0-syzkaller-16201-gb57b17e88bf5 #0 [ 286.545058][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.554422][ T29] task:syz-executor165 state:D stack:27176 pid:5068 tgid:5068 ppid:5065 flags:0x00004006 [ 286.564730][ T29] Call Trace: [ 286.568497][ T29] [ 286.571856][ T29] __schedule+0x1960/0x4a80 [ 286.576698][ T29] ? release_firmware_map_entry+0x190/0x190 [ 286.583159][ T29] ? __lock_acquire+0x7f70/0x7f70 [ 286.588812][ T29] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 286.594840][ T29] ? print_irqtrace_events+0x220/0x220 [ 286.600754][ T29] ? _raw_spin_lock_irq+0xdf/0x120 [ 286.605910][ T29] ? schedule+0x8e/0x260 [ 286.610409][ T29] schedule+0x149/0x260 [ 286.614617][ T29] schedule_preempt_disabled+0x13/0x20 [ 286.620617][ T29] rwsem_down_write_slowpath+0xee6/0x13a0 [ 286.626388][ T29] ? rwsem_down_write_slowpath+0xa05/0x13a0 [ 286.633056][ T29] ? down_write_killable_nested+0x80/0x80 [ 286.639283][ T29] ? read_lock_is_recursive+0x20/0x20 [ 286.645091][ T29] __down_write_common+0x1aa/0x200 [ 286.650867][ T29] ? clear_nonspinnable+0x60/0x60 [ 286.656326][ T29] blkdev_fallocate+0x22a/0x570 [ 286.661314][ T29] vfs_fallocate+0x551/0x6b0 [ 286.666363][ T29] __x64_sys_fallocate+0xbd/0x100 [ 286.671864][ T29] do_syscall_64+0x44/0x110 [ 286.676451][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 286.682490][ T29] RIP: 0033:0x7f7d8cdedb29 [ 286.686938][ T29] RSP: 002b:00007ffeb625ab88 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.695449][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7d8cdedb29 [ 286.703883][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 286.712332][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 286.720748][ T29] R10: 0010000001002000 R11: 0000000000000246 R12: 0000000000000001 [ 286.729180][ T29] R13: 00007ffeb625ada8 R14: 00007ffeb625abb0 R15: 00007ffeb625aba0 [ 286.738023][ T29] [ 286.741469][ T29] INFO: task syz-executor165:5071 blocked for more than 143 seconds. [ 286.750038][ T29] Not tainted 6.6.0-syzkaller-16201-gb57b17e88bf5 #0 [ 286.757708][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.766407][ T29] task:syz-executor165 state:D stack:26920 pid:5071 tgid:5071 ppid:5069 flags:0x00004006 [ 286.776664][ T29] Call Trace: [ 286.780490][ T29] [ 286.783917][ T29] __schedule+0x1960/0x4a80 [ 286.788936][ T29] ? release_firmware_map_entry+0x190/0x190 [ 286.794884][ T29] ? __lock_acquire+0x7f70/0x7f70 [ 286.799974][ T29] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 286.806405][ T29] ? print_irqtrace_events+0x220/0x220 [ 286.812307][ T29] ? _raw_spin_lock_irq+0xdf/0x120 [ 286.817895][ T29] ? schedule+0x8e/0x260 [ 286.822584][ T29] schedule+0x149/0x260 [ 286.827157][ T29] schedule_preempt_disabled+0x13/0x20 [ 286.832711][ T29] rwsem_down_write_slowpath+0xee6/0x13a0 [ 286.838516][ T29] ? rwsem_down_write_slowpath+0xa05/0x13a0 [ 286.844484][ T29] ? down_write_killable_nested+0x80/0x80 [ 286.850755][ T29] ? read_lock_is_recursive+0x20/0x20 [ 286.856565][ T29] __down_write_common+0x1aa/0x200 [ 286.862142][ T29] ? clear_nonspinnable+0x60/0x60 [ 286.867310][ T29] blkdev_fallocate+0x22a/0x570 [ 286.872641][ T29] vfs_fallocate+0x551/0x6b0 [ 286.877790][ T29] __x64_sys_fallocate+0xbd/0x100 [ 286.883244][ T29] do_syscall_64+0x44/0x110 [ 286.888229][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 286.894539][ T29] RIP: 0033:0x7f7d8cdedb29 [ 286.899025][ T29] RSP: 002b:00007ffeb625ab88 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 286.907683][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7d8cdedb29 [ 286.915687][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 286.924120][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 286.932247][ T29] R10: 0010000001002000 R11: 0000000000000246 R12: 0000000000000001 [ 286.940686][ T29] R13: 00007ffeb625ada8 R14: 00007ffeb625abb0 R15: 00007ffeb625aba0 [ 286.949152][ T29] [ 286.952613][ T29] INFO: task syz-executor165:5072 blocked for more than 143 seconds. [ 286.961154][ T29] Not tainted 6.6.0-syzkaller-16201-gb57b17e88bf5 #0 [ 286.968826][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.977977][ T29] task:syz-executor165 state:D stack:26920 pid:5072 tgid:5072 ppid:5070 flags:0x00004006 [ 286.988730][ T29] Call Trace: [ 286.992055][ T29] [ 286.995017][ T29] __schedule+0x1960/0x4a80 [ 286.999631][ T29] ? release_firmware_map_entry+0x190/0x190 [ 287.005664][ T29] ? __lock_acquire+0x7f70/0x7f70 [ 287.010878][ T29] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 287.017305][ T29] ? print_irqtrace_events+0x220/0x220 [ 287.023222][ T29] ? _raw_spin_lock_irq+0xdf/0x120 [ 287.028803][ T29] ? schedule+0x8e/0x260 [ 287.033516][ T29] schedule+0x149/0x260 [ 287.037757][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.043738][ T29] rwsem_down_write_slowpath+0xee6/0x13a0 [ 287.049933][ T29] ? rwsem_down_write_slowpath+0xa05/0x13a0 [ 287.056300][ T29] ? down_write_killable_nested+0x80/0x80 [ 287.062507][ T29] ? read_lock_is_recursive+0x20/0x20 [ 287.067986][ T29] __down_write_common+0x1aa/0x200 [ 287.073143][ T29] ? clear_nonspinnable+0x60/0x60 [ 287.078264][ T29] blkdev_fallocate+0x22a/0x570 [ 287.083165][ T29] vfs_fallocate+0x551/0x6b0 [ 287.088236][ T29] __x64_sys_fallocate+0xbd/0x100 [ 287.093699][ T29] do_syscall_64+0x44/0x110 [ 287.098663][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.105253][ T29] RIP: 0033:0x7f7d8cdedb29 [ 287.110266][ T29] RSP: 002b:00007ffeb625ab88 EFLAGS: 00000246 ORIG_RAX: 000000000000011d [ 287.119112][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f7d8cdedb29 [ 287.127524][ T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004 [ 287.135926][ T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0 [ 287.143985][ T29] R10: 0010000001002000 R11: 0000000000000246 R12: 0000000000000001 [ 287.152359][ T29] R13: 00007ffeb625ada8 R14: 00007ffeb625abb0 R15: 00007ffeb625aba0 [ 287.160846][ T29] [ 287.164304][ T29] [ 287.164304][ T29] Showing all locks held in the system: [ 287.172666][ T29] 1 lock held by khungtaskd/29: [ 287.177702][ T29] #0: ffffffff8d92d0a0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x2a0 [ 287.188176][ T29] 2 locks held by getty/4813: [ 287.192887][ T29] #0: ffff88802a2fa0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 287.203378][ T29] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b4/0x1e10 [ 287.213821][ T29] 1 lock held by syz-executor165/5067: [ 287.219455][ T29] 1 lock held by syz-executor165/5068: [ 287.227621][ T29] #0: ffff888148c8abc0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x570 [ 287.238902][ T29] 1 lock held by syz-executor165/5071: [ 287.244715][ T29] #0: ffff888148c8abc0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x570 [ 287.256228][ T29] 1 lock held by syz-executor165/5072: [ 287.262254][ T29] #0: ffff888148c8abc0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x570 [ 287.273154][ T29] 1 lock held by syz-executor165/5090: [ 287.278765][ T29] #0: ffff888148c8abc0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x570 [ 287.289895][ T29] 1 lock held by syz-executor165/5097: [ 287.295390][ T29] #0: ffff888148c8abc0 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x22a/0x570 [ 287.306868][ T29] [ 287.309941][ T29] ============================================= [ 287.309941][ T29] [ 287.318486][ T29] NMI backtrace for cpu 0 [ 287.322848][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.6.0-syzkaller-16201-gb57b17e88bf5 #0 [ 287.332318][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 287.342375][ T29] Call Trace: [ 287.345653][ T29] [ 287.348690][ T29] dump_stack_lvl+0x1e7/0x2d0 [ 287.353383][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 287.358797][ T29] ? nf_tcp_handle_invalid+0x650/0x650 [ 287.364261][ T29] ? panic+0x850/0x850 [ 287.368343][ T29] ? vprintk_emit+0x607/0x720 [ 287.373054][ T29] ? printk_sprint+0x480/0x480 [ 287.377834][ T29] nmi_cpu_backtrace+0x498/0x4d0 [ 287.382787][ T29] ? nmi_trigger_cpumask_backtrace+0x310/0x310 [ 287.388945][ T29] ? _printk+0xd5/0x120 [ 287.393122][ T29] ? panic+0x850/0x850 [ 287.397199][ T29] ? __wake_up_klogd+0xcc/0x100 [ 287.402060][ T29] ? panic+0x850/0x850 [ 287.406140][ T29] ? __rcu_read_unlock+0x96/0x100 [ 287.411169][ T29] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 287.417265][ T29] nmi_trigger_cpumask_backtrace+0x198/0x310 [ 287.423268][ T29] watchdog+0xfa9/0xff0 [ 287.427452][ T29] ? watchdog+0x1e9/0xff0 [ 287.431807][ T29] kthread+0x2d3/0x370 [ 287.435888][ T29] ? hungtask_pm_notify+0x90/0x90 [ 287.440923][ T29] ? kthread_blkcg+0xd0/0xd0 [ 287.445518][ T29] ret_from_fork+0x48/0x80 [ 287.449953][ T29] ? kthread_blkcg+0xd0/0xd0 [ 287.454742][ T29] ret_from_fork_asm+0x11/0x20 [ 287.459560][ T29] [ 287.462773][ T29] Sending NMI from CPU 0 to CPUs 1: [ 287.468059][ C1] NMI backtrace for cpu 1 [ 287.468070][ C1] CPU: 1 PID: 4500 Comm: klogd Not tainted 6.6.0-syzkaller-16201-gb57b17e88bf5 #0 [ 287.468088][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 287.468097][ C1] RIP: 0010:sk_filter_trim_cap+0x0/0x9a0 [ 287.468168][ C1] Code: 0f 8c 66 fe ff ff be 08 00 00 00 4c 89 e7 e8 27 06 e4 f8 48 8b 54 24 08 e9 4f fe ff ff e8 68 70 13 02 0f 1f 84 00 00 00 00 00 0f 1e fa 55 48 89 e5 41 57 41 56 41 55 41 54 53 48 83 e4 e0 48 [ 287.468181][ C1] RSP: 0018:ffffc9000316faf8 EFLAGS: 00000293 [ 287.468197][ C1] RAX: ffffffff89c4eb19 RBX: ffff88807b42b000 RCX: ffff88807a810000 [ 287.468210][ C1] RDX: 0000000000000001 RSI: ffff8880793ad500 RDI: ffff88807b42b000 [ 287.468222][ C1] RBP: ffffc9000316fcb0 R08: ffffffff89c4eb0c R09: 1ffff1100525c907 [ 287.468234][ C1] R10: dffffc0000000000 R11: ffffed100525c908 R12: ffffc9000316fc00 [ 287.468246][ C1] R13: 000000000000003d R14: ffff88802a82b668 R15: dffffc0000000000 [ 287.468258][ C1] FS: 00007f06123f1380(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 287.468273][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.468285][ C1] CR2: 00007f7d8ce640d0 CR3: 00000000262ce000 CR4: 00000000003506f0 [ 287.468299][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.468309][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.468320][ C1] Call Trace: [ 287.468326][ C1] [ 287.468332][ C1] ? nmi_cpu_backtrace+0x3be/0x4d0 [ 287.468357][ C1] ? read_lock_is_recursive+0x20/0x20 [ 287.468381][ C1] ? nmi_trigger_cpumask_backtrace+0x310/0x310 [ 287.468405][ C1] ? nmi_handle+0x2a/0x570 [ 287.468436][ C1] ? nmi_cpu_backtrace_handler+0xc/0x10 [ 287.468459][ C1] ? nmi_handle+0x14c/0x570 [ 287.468479][ C1] ? nmi_handle+0x2a/0x570 [ 287.468502][ C1] ? copy_bpf_fprog_from_user+0x450/0x450 [ 287.468523][ C1] ? default_do_nmi+0x62/0x150 [ 287.468591][ C1] ? exc_nmi+0x121/0x200 [ 287.468614][ C1] ? end_repeat_nmi+0xf/0x2a [ 287.468643][ C1] ? unix_dgram_sendmsg+0xbec/0x2200 [ 287.468679][ C1] ? unix_dgram_sendmsg+0xbf9/0x2200 [ 287.468703][ C1] ? copy_bpf_fprog_from_user+0x450/0x450 [ 287.468726][ C1] ? copy_bpf_fprog_from_user+0x450/0x450 [ 287.468749][ C1] ? copy_bpf_fprog_from_user+0x450/0x450 [ 287.468771][ C1] [ 287.468776][ C1] [ 287.468781][ C1] unix_dgram_sendmsg+0xcc5/0x2200 [ 287.468814][ C1] ? tomoyo_socket_sendmsg_permission+0x287/0x410 [ 287.468856][ C1] ? unix_dgram_poll+0x6c0/0x6c0 [ 287.468884][ C1] ? bpf_lsm_socket_sendmsg+0x9/0x10 [ 287.468909][ C1] ? security_socket_sendmsg+0x81/0xa0 [ 287.468930][ C1] ? unix_dgram_poll+0x6c0/0x6c0 [ 287.468951][ C1] __sys_sendto+0x484/0x640 [ 287.468988][ C1] ? __ia32_sys_getpeername+0x90/0x90 [ 287.469023][ C1] ? print_irqtrace_events+0x220/0x220 [ 287.469048][ C1] __x64_sys_sendto+0xde/0xf0 [ 287.469068][ C1] do_syscall_64+0x44/0x110 [ 287.469091][ C1] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.469116][ C1] RIP: 0033:0x7f06125539b5 [ 287.469130][ C1] Code: 8b 44 24 08 48 83 c4 28 48 98 c3 48 98 c3 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 26 45 31 c9 45 31 c0 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 7a 48 8b 15 44 c4 0c 00 f7 d8 64 89 02 48 83 [ 287.469143][ C1] RSP: 002b:00007fffcd4c92d8 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 287.469161][ C1] RAX: ffffffffffffffda RBX: 0000000000000002 RCX: 00007f06125539b5 [ 287.469173][ C1] RDX: 000000000000003d RSI: 000055f0d44ead80 RDI: 0000000000000003 [ 287.469184][ C1] RBP: 000055f0d44e6910 R08: 0000000000000000 R09: 0000000000000000 [ 287.469194][ C1] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000013 [ 287.469205][ C1] R13: 00007f06126e1212 R14: 00007fffcd4c93d8 R15: 0000000000000000 [ 287.469226][ C1] [ 287.469233][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.173 msecs [ 287.470531][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 287.854052][ T29] CPU: 0 PID: 29 Comm: khungtaskd Not tainted 6.6.0-syzkaller-16201-gb57b17e88bf5 #0 [ 287.863518][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023 [ 287.873578][ T29] Call Trace: [ 287.876863][ T29] [ 287.879801][ T29] dump_stack_lvl+0x1e7/0x2d0 [ 287.884501][ T29] ? nf_tcp_handle_invalid+0x650/0x650 [ 287.889976][ T29] ? panic+0x850/0x850 [ 287.894063][ T29] ? vscnprintf+0x5d/0x80 [ 287.898574][ T29] panic+0x349/0x850 [ 287.902487][ T29] ? nmi_trigger_cpumask_backtrace+0x244/0x310 [ 287.908656][ T29] ? __memcpy_flushcache+0x2b0/0x2b0 [ 287.914857][ T29] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 287.920978][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 287.926410][ T29] ? nmi_trigger_cpumask_backtrace+0x244/0x310 [ 287.932610][ T29] ? nmi_trigger_cpumask_backtrace+0x2c5/0x310 [ 287.939093][ T29] ? nmi_trigger_cpumask_backtrace+0x2ca/0x310 [ 287.945460][ T29] watchdog+0xfe8/0xff0 [ 287.949644][ T29] ? watchdog+0x1e9/0xff0 [ 287.953998][ T29] kthread+0x2d3/0x370 [ 287.958075][ T29] ? hungtask_pm_notify+0x90/0x90 [ 287.963111][ T29] ? kthread_blkcg+0xd0/0xd0 [ 287.967708][ T29] ret_from_fork+0x48/0x80 [ 287.972134][ T29] ? kthread_blkcg+0xd0/0xd0 [ 287.976729][ T29] ret_from_fork_asm+0x11/0x20 [ 287.981518][ T29] [ 287.984845][ T29] Kernel Offset: disabled [ 287.989174][ T29] Rebooting in 86400 seconds..