./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4266955796 <...> Warning: Permanently added '10.128.10.27' (ED25519) to the list of known hosts. execve("./syz-executor4266955796", ["./syz-executor4266955796"], 0x7ffd7ebe32d0 /* 10 vars */) = 0 brk(NULL) = 0x555555582000 brk(0x555555582d00) = 0x555555582d00 arch_prctl(ARCH_SET_FS, 0x555555582380) = 0 set_tid_address(0x555555582650) = 5057 set_robust_list(0x555555582660, 24) = 0 rseq(0x555555582ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4266955796", 4096) = 28 getrandom("\xc0\x94\xe8\x2e\xba\x5c\x07\x15", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555555582d00 brk(0x5555555a3d00) = 0x5555555a3d00 brk(0x5555555a4000) = 0x5555555a4000 mprotect(0x7fc5abf83000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 [ 73.625211][ T27] audit: type=1400 audit(1702339750.907:83): avc: denied { execmem } for pid=5057 comm="syz-executor426" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 73.646843][ T27] audit: type=1400 audit(1702339750.927:84): avc: denied { read write } for pid=5057 comm="syz-executor426" name="loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5058 attached , child_tidptr=0x555555582650) = 5058 [pid 5058] set_robust_list(0x555555582660, 24) = 0 [ 73.672134][ T27] audit: type=1400 audit(1702339750.927:85): avc: denied { open } for pid=5057 comm="syz-executor426" path="/dev/loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 73.696942][ T27] audit: type=1400 audit(1702339750.927:86): avc: denied { ioctl } for pid=5057 comm="syz-executor426" path="/dev/loop0" dev="devtmpfs" ino=648 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [pid 5058] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5058] setpgid(0, 0) = 0 [pid 5058] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5058] write(3, "1000", 4) = 4 [pid 5058] close(3) = 0 [pid 5058] memfd_create("syzkaller", 0) = 3 [ 73.723650][ T27] audit: type=1400 audit(1702339751.007:87): avc: denied { append } for pid=4490 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 73.745947][ T27] audit: type=1400 audit(1702339751.007:88): avc: denied { open } for pid=4490 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [pid 5058] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fc5a3acd000 [ 73.768533][ T27] audit: type=1400 audit(1702339751.007:89): avc: denied { getattr } for pid=4490 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [pid 5058] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5058] munmap(0x7fc5a3acd000, 138412032) = 0 [pid 5058] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5058] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5058] close(3) = 0 [pid 5058] mkdir("./file0", 0777) = 0 [ 73.992088][ T5058] loop0: detected capacity change from 0 to 32768 [ 74.014547][ T27] audit: type=1400 audit(1702339751.297:90): avc: denied { mounton } for pid=5058 comm="syz-executor426" path="/root/file0" dev="sda1" ino=1927 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 74.019085][ T5058] BTRFS: device fsid c9fe44da-de57-406a-8241-57ec7d4412cf devid 1 transid 8 /dev/loop0 scanned by syz-executor426 (5058) [ 74.060129][ T5058] BTRFS info (device loop0): first mount of filesystem c9fe44da-de57-406a-8241-57ec7d4412cf [ 74.070448][ T5058] BTRFS info (device loop0): using crc32c (crc32c-intel) checksum algorithm [ 74.079191][ T5058] BTRFS warning (device loop0): the 'inode_cache' option is deprecated and has no effect since 5.11 [ 74.090005][ T5058] BTRFS info (device loop0): using free space tree [pid 5058] mount("/dev/loop0", "./file0", "btrfs", MS_NOSUID|MS_NODEV|MS_SYNCHRONOUS, "noinode_cache,") = 0 [pid 5058] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5058] chdir("./file0") = 0 [pid 5058] ioctl(4, LOOP_CLR_FD) = 0 [ 74.115981][ T5058] BTRFS info (device loop0): enabling ssd optimizations [ 74.122995][ T5058] BTRFS info (device loop0): auto enabling async discard [ 74.135932][ T27] audit: type=1400 audit(1702339751.417:91): avc: denied { mount } for pid=5058 comm="syz-executor426" name="/" dev="loop0" ino=256 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fs_t tclass=filesystem permissive=1 [pid 5058] close(4) = 0 [pid 5058] openat(AT_FDCWD, "blkio.throttle.io_service_bytes_recursive", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4 [ 74.205834][ T27] audit: type=1400 audit(1702339751.487:92): avc: denied { write } for pid=5058 comm="syz-executor426" name="/" dev="loop0" ino=256 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1 [pid 5058] mmap(0x20000000, 12288, PROT_WRITE|PROT_EXEC|PROT_GROWSUP, MAP_SHARED|MAP_FIXED, 4, 0) = 0x20000000 [pid 5058] ftruncate(4, 32769) = 0 [pid 5058] ioctl(4, FS_IOC_FIEMAP, 0x200000c0 [pid 5057] kill(-5058, SIGKILL) = 0 [pid 5057] kill(5058, SIGKILL) = 0 [pid 5057] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5057] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5057] getdents64(3, 0x5555555836f0 /* 2 entries */, 32768) = 48 [pid 5057] getdents64(3, 0x5555555836f0 /* 0 entries */, 32768) = 0 [pid 5057] close(3) = 0 [ 86.982093][ T921] cfg80211: failed to load regulatory.db [ 286.660060][ T28] INFO: task syz-executor426:5058 blocked for more than 143 seconds. [ 286.668236][ T28] Not tainted 6.7.0-rc5-syzkaller #0 [ 286.674160][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.682926][ T28] task:syz-executor426 state:D stack:24192 pid:5058 tgid:5058 ppid:5057 flags:0x00004006 [ 286.693181][ T28] Call Trace: [ 286.696450][ T28] [ 286.699366][ T28] __schedule+0xedb/0x5af0 [ 286.703941][ T28] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 286.710014][ T28] ? io_schedule_timeout+0x150/0x150 [ 286.715294][ T28] ? schedule+0x1fc/0x270 [ 286.719615][ T28] ? reacquire_held_locks+0x4c0/0x4c0 [ 286.725024][ T28] ? mark_held_locks+0x9f/0xe0 [ 286.729812][ T28] schedule+0xe9/0x270 [ 286.733945][ T28] lock_extent+0x657/0x730 [ 286.738463][ T28] ? try_lock_extent+0x130/0x130 [ 286.743456][ T28] ? preempt_count_sub+0x160/0x160 [ 286.748590][ T28] ? prepare_to_swait_exclusive+0x240/0x240 [ 286.754542][ T28] ? preempt_count_sub+0x160/0x160 [ 286.759668][ T28] ? folio_flags.constprop.0+0x56/0x150 [ 286.765272][ T28] btrfs_page_mkwrite+0x653/0x11e0 [ 286.770445][ T28] ? btrfs_dio_write+0xe0/0xe0 [ 286.775201][ T28] ? rcu_read_unlock+0x33/0xb0 [ 286.780018][ T28] ? reacquire_held_locks+0x4c0/0x4c0 [ 286.785414][ T28] do_page_mkwrite+0x17a/0x380 [ 286.790225][ T28] do_wp_page+0xaa9/0x36b0 [ 286.794653][ T28] ? lock_sync+0x190/0x190 [ 286.799063][ T28] ? vm_normal_page+0x270/0x270 [ 286.803972][ T28] ? do_raw_spin_lock+0x12e/0x2b0 [ 286.809028][ T28] ? spin_bug+0x1d0/0x1d0 [ 286.813417][ T28] __handle_mm_fault+0x1d7d/0x3d70 [ 286.818545][ T28] ? vm_iomap_memory+0x170/0x170 [ 286.823528][ T28] ? find_vma+0x112/0x1b0 [ 286.827875][ T28] ? get_unmapped_area+0x3e0/0x3e0 [ 286.833024][ T28] handle_mm_fault+0x47a/0xa10 [ 286.837805][ T28] ? lock_mm_and_find_vma+0xa6/0x580 [ 286.843123][ T28] do_user_addr_fault+0x3d1/0x1000 [ 286.848264][ T28] ? rcu_is_watching+0x12/0xb0 [ 286.853079][ T28] exc_page_fault+0x5d/0xc0 [ 286.857645][ T28] asm_exc_page_fault+0x26/0x30 [ 286.862622][ T28] RIP: 0010:rep_movs_alternative+0x33/0x70 [ 286.868481][ T28] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb [ 286.888133][ T28] RSP: 0018:ffffc9000335f8d8 EFLAGS: 00050206 [ 286.894254][ T28] RAX: 0000000000000000 RBX: 0000000000000038 RCX: 0000000000000038 [ 286.902262][ T28] RDX: fffff5200066bf32 RSI: ffffc9000335f958 RDI: 00000000200000e0 [ 286.910267][ T28] RBP: 00000000200000e0 R08: 0000000000000000 R09: fffff5200066bf31 [ 286.918227][ T28] R10: ffffc9000335f98f R11: ffffffff915eab48 R12: ffffc9000335f958 [ 286.926231][ T28] R13: 0000000020000118 R14: 0000000000000000 R15: 0000000000000000 [ 286.934275][ T28] _copy_to_user+0xa8/0xb0 [ 286.938770][ T28] fiemap_fill_next_extent+0x232/0x380 [ 286.944267][ T28] ? compat_ptr_ioctl+0xa0/0xa0 [ 286.949139][ T28] ? lockdep_hardirqs_on+0x7d/0x110 [ 286.954397][ T28] extent_fiemap+0x13e0/0x19f0 [ 286.959224][ T28] ? btrfs_clone_extent_buffer+0x680/0x680 [ 286.965062][ T28] ? _raw_spin_unlock_irqrestore+0x4e/0x70 [ 286.970912][ T28] ? lockdep_hardirqs_on+0x7d/0x110 [ 286.976107][ T28] ? _raw_spin_unlock_irqrestore+0x3b/0x70 [ 286.981935][ T28] ? btrfs_start_ordered_extent+0x259/0x6c0 [ 286.987842][ T28] ? btrfs_lookup_first_ordered_extent+0x180/0x4b0 [ 286.994375][ T28] ? prepare_to_swait_exclusive+0x240/0x240 [ 287.000326][ T28] ? btrfs_put_ordered_extent+0xfa/0x620 [ 287.005948][ T28] ? btrfs_wait_ordered_range+0x8b/0x280 [ 287.011611][ T28] btrfs_fiemap+0xe4/0x160 [ 287.016064][ T28] ? btrfs_dir_llseek+0xe0/0xe0 [ 287.020953][ T28] do_vfs_ioctl+0x339/0x1920 [ 287.025557][ T28] ? vfs_fileattr_set+0xbf0/0xbf0 [ 287.030626][ T28] ? selinux_bprm_creds_for_exec+0xb30/0xb30 [ 287.036673][ T28] ? selinux_file_ioctl+0xb5/0x270 [ 287.041815][ T28] __x64_sys_ioctl+0x112/0x210 [ 287.046590][ T28] do_syscall_64+0x40/0x110 [ 287.051126][ T28] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.057047][ T28] RIP: 0033:0x7fc5abf0bb19 [ 287.061491][ T28] RSP: 002b:00007fff3dd8de88 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 287.070030][ T28] RAX: ffffffffffffffda RBX: 0000000020000080 RCX: 00007fc5abf0bb19 [ 287.078033][ T28] RDX: 00000000200000c0 RSI: 00000000c020660b RDI: 0000000000000004 [ 287.086081][ T28] RBP: 00007fc5abf835f0 R08: 0000000000000000 R09: 0000000000000000 [ 287.094114][ T28] R10: 0000000000000000 R11: 0000000000000246 R12: 00007fff3dd8dec0 [ 287.102140][ T28] R13: 00007fff3dd8e0e8 R14: 431bde82d7b634db R15: 00007fc5abf5403b [ 287.110160][ T28] [ 287.113189][ T28] [ 287.113189][ T28] Showing all locks held in the system: [ 287.120928][ T28] 1 lock held by khungtaskd/28: [ 287.125778][ T28] #0: ffffffff8cfa82e0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340 [ 287.135686][ T28] 2 locks held by getty/4810: [ 287.140412][ T28] #0: ffff88802618a0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80 [ 287.150321][ T28] #1: ffffc900020582f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc6/0x1490 [ 287.160481][ T28] 4 locks held by syz-executor426/5058: [ 287.166007][ T28] #0: ffff888076afc648 (&sb->s_type->i_mutex_key#15){++++}-{3:3}, at: btrfs_inode_lock+0xf9/0x100 [ 287.176771][ T28] #1: ffff88801fdce1e0 (&mm->mmap_lock){++++}-{3:3}, at: lock_mm_and_find_vma+0x35/0x580 [ 287.186773][ T28] #2: ffff88807f22a510 (sb_pagefaults){.+.+}-{0:0}, at: do_page_mkwrite+0x17a/0x380 [ 287.196289][ T28] #3: ffff888076afc4d0 (&ei->i_mmap_lock){.+.+}-{3:3}, at: btrfs_page_mkwrite+0x6e4/0x11e0 [ 287.206445][ T28] [ 287.208757][ T28] ============================================= [ 287.208757][ T28] [ 287.217197][ T28] NMI backtrace for cpu 0 [ 287.221526][ T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.7.0-rc5-syzkaller #0 [ 287.229596][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023 [ 287.239646][ T28] Call Trace: [ 287.242924][ T28] [ 287.245851][ T28] dump_stack_lvl+0xd9/0x1b0 [ 287.250484][ T28] nmi_cpu_backtrace+0x277/0x390 [ 287.255428][ T28] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 287.260635][ T28] nmi_trigger_cpumask_backtrace+0x299/0x300 [ 287.266621][ T28] watchdog+0xf87/0x1210 [ 287.270882][ T28] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.276869][ T28] ? lockdep_hardirqs_on+0x7d/0x110 [ 287.282083][ T28] ? __kthread_parkme+0x14b/0x220 [ 287.287112][ T28] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.293096][ T28] kthread+0x2c6/0x3a0 [ 287.297169][ T28] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.302369][ T28] ? kthread_complete_and_exit+0x40/0x40 [ 287.308003][ T28] ret_from_fork+0x45/0x80 [ 287.312448][ T28] ? kthread_complete_and_exit+0x40/0x40 [ 287.318086][ T28] ret_from_fork_asm+0x11/0x20 [ 287.322874][ T28] [ 287.325985][ T28] Sending NMI from CPU 0 to CPUs 1: [ 287.331234][ C1] NMI backtrace for cpu 1 [ 287.331243][ C1] CPU: 1 PID: 4497 Comm: klogd Not tainted 6.7.0-rc5-syzkaller #0 [ 287.331264][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023 [ 287.331275][ C1] RIP: 0010:page_ext_get+0x0/0x310 [ 287.331299][ C1] Code: 56 9f f5 ff e9 2f fe ff ff 48 89 df e8 49 9f f5 ff e9 33 ff ff ff 48 89 df e8 3c 9f f5 ff e9 6b ff ff ff 0f 1f 80 00 00 00 00 <66> 0f 1f 00 41 55 41 54 55 53 48 89 fb e8 0e bb 9f ff e8 19 0e 88 [ 287.331316][ C1] RSP: 0018:ffffc900033b73e0 EFLAGS: 00000086 [ 287.331332][ C1] RAX: 0000000007e80198 RBX: ffffea0000861640 RCX: ffffffff81e53aa8 [ 287.331346][ C1] RDX: ffff88807b92c180 RSI: ffffffff81e539fe RDI: ffffea0000861640 [ 287.331360][ C1] RBP: 0000000000000000 R08: 0000000000000005 R09: 0000000000000000 [ 287.331372][ C1] R10: 0000000007e80198 R11: dffffc0000000000 R12: 00000000002420c0 [ 287.331385][ C1] R13: 0000000007e80198 R14: 0000000000000001 R15: 0000000000000000 [ 287.331397][ C1] FS: 00007f3bec764380(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 287.331417][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.331431][ C1] CR2: 000055e80cefa600 CR3: 000000007b8bd000 CR4: 00000000003506f0 [ 287.331444][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.331456][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.331468][ C1] Call Trace: [ 287.331474][ C1] [ 287.331479][ C1] ? show_regs+0x8f/0xa0 [ 287.331503][ C1] ? nmi_cpu_backtrace+0x1d4/0x390 [ 287.331527][ C1] ? nmi_cpu_backtrace_handler+0xc/0x10 [ 287.331556][ C1] ? nmi_handle+0x1a6/0x570 [ 287.331580][ C1] ? __free_page_ext+0x280/0x280 [ 287.331599][ C1] ? default_do_nmi+0x6a/0x160 [ 287.331624][ C1] ? exc_nmi+0x186/0x200 [ 287.331647][ C1] ? end_repeat_nmi+0xf/0x2a [ 287.331668][ C1] ? save_stack+0x178/0x1f0 [ 287.331692][ C1] ? save_stack+0xce/0x1f0 [ 287.331716][ C1] ? __free_page_ext+0x280/0x280 [ 287.331734][ C1] ? __free_page_ext+0x280/0x280 [ 287.331753][ C1] ? __free_page_ext+0x280/0x280 [ 287.331772][ C1] [ 287.331777][ C1] [ 287.331782][ C1] __set_page_owner+0x2a/0x60 [ 287.331808][ C1] post_alloc_hook+0x2d0/0x350 [ 287.331830][ C1] get_page_from_freelist+0xa25/0x36d0 [ 287.331855][ C1] ? hlock_class+0x4e/0x130 [ 287.331879][ C1] ? hlock_class+0x4e/0x130 [ 287.331903][ C1] ? hlock_class+0x4e/0x130 [ 287.331926][ C1] ? __zone_watermark_ok+0x4c0/0x4c0 [ 287.331948][ C1] ? __should_fail_alloc_page+0x115/0x130 [ 287.331975][ C1] ? prepare_alloc_pages.constprop.0+0x16f/0x550 [ 287.331999][ C1] ? print_usage_bug.part.0+0x550/0x550 [ 287.332032][ C1] __alloc_pages+0x22e/0x2420 [ 287.332054][ C1] ? print_usage_bug.part.0+0x550/0x550 [ 287.332082][ C1] ? hlock_class+0x4e/0x130 [ 287.332105][ C1] ? __lock_acquire+0x14f0/0x3b20 [ 287.332133][ C1] ? warn_alloc+0x3a0/0x3a0 [ 287.332154][ C1] ? hlock_class+0x4e/0x130 [ 287.332179][ C1] ? print_usage_bug.part.0+0x550/0x550 [ 287.332208][ C1] ? exc_int3+0xe/0x70 [ 287.332231][ C1] cache_grow_begin+0x99/0x3a0 [ 287.332260][ C1] cache_alloc_refill+0x295/0x3b0 [ 287.332287][ C1] ? kmem_cache_alloc_node+0xc0/0x4a0 [ 287.332315][ C1] ? kmem_cache_alloc_node+0x30b/0x4a0 [ 287.332344][ C1] kmem_cache_alloc_node+0x3e6/0x4a0 [ 287.332375][ C1] __alloc_skb+0x287/0x330 [ 287.332435][ C1] ? __napi_build_skb+0x50/0x50 [ 287.332460][ C1] ? __lock_acquire+0x14f0/0x3b20 [ 287.332489][ C1] alloc_skb_with_frags+0xe4/0x710 [ 287.332519][ C1] sock_alloc_send_pskb+0x7e4/0x970 [ 287.332542][ C1] ? lock_acquire+0x1ae/0x520 [ 287.332570][ C1] ? sock_wmalloc+0x120/0x120 [ 287.332589][ C1] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.332616][ C1] ? do_raw_spin_lock+0x12e/0x2b0 [ 287.332645][ C1] ? spin_bug+0x1d0/0x1d0 [ 287.332673][ C1] unix_dgram_sendmsg+0x464/0x1ca0 [ 287.332739][ C1] ? tomoyo_socket_bind_permission+0x340/0x340 [ 287.332796][ C1] ? unix_stream_recvmsg+0x1b0/0x1b0 [ 287.332816][ C1] ? lockdep_hardirqs_on_prepare+0x420/0x420 [ 287.332846][ C1] ? unix_stream_recvmsg+0x1b0/0x1b0 [ 287.332865][ C1] __sock_sendmsg+0xd5/0x180 [ 287.332910][ C1] __sys_sendto+0x255/0x340 [ 287.332936][ C1] ? __ia32_sys_getpeername+0xb0/0xb0 [ 287.332963][ C1] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.332990][ C1] ? preempt_count_sub+0x160/0x160 [ 287.333016][ C1] __x64_sys_sendto+0xe0/0x1b0 [ 287.333046][ C1] ? syscall_enter_from_user_mode+0x7f/0x120 [ 287.333076][ C1] do_syscall_64+0x40/0x110 [ 287.333099][ C1] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.333129][ C1] RIP: 0033:0x7f3bec8c69b5 [ 287.333143][ C1] Code: 8b 44 24 08 48 83 c4 28 48 98 c3 48 98 c3 41 89 ca 64 8b 04 25 18 00 00 00 85 c0 75 26 45 31 c9 45 31 c0 b8 2c 00 00 00 0f 05 <48> 3d 00 f0 ff ff 76 7a 48 8b 15 44 c4 0c 00 f7 d8 64 89 02 48 83 [ 287.333160][ C1] RSP: 002b:00007ffc9b6fb768 EFLAGS: 00000246 ORIG_RAX: 000000000000002c [ 287.333178][ C1] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f3bec8c69b5 [ 287.333191][ C1] RDX: 000000000000003d RSI: 0000560a4d136a70 RDI: 0000000000000003 [ 287.333203][ C1] RBP: 0000560a4d1302c0 R08: 0000000000000000 R09: 0000000000000000 [ 287.333215][ C1] R10: 0000000000004000 R11: 0000000000000246 R12: 0000000000000013 [ 287.333228][ C1] R13: 00007f3beca54212 R14: 00007ffc9b6fb868 R15: 0000000000000000 [ 287.333243][ C1] [ 287.333250][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 2.016 msecs [ 287.334278][ T28] Kernel panic - not syncing: hung_task: blocked tasks [ 287.868104][ T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.7.0-rc5-syzkaller #0 [ 287.876173][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/10/2023 [ 287.886225][ T28] Call Trace: [ 287.889524][ T28] [ 287.892461][ T28] dump_stack_lvl+0xd9/0x1b0 [ 287.897070][ T28] panic+0x6dc/0x790 [ 287.900977][ T28] ? panic_smp_self_stop+0xa0/0xa0 [ 287.906103][ T28] ? preempt_schedule_thunk+0x1a/0x30 [ 287.911498][ T28] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 287.916710][ T28] ? preempt_schedule_thunk+0x1a/0x30 [ 287.922095][ T28] ? watchdog+0xd3e/0x1210 [ 287.926515][ T28] ? watchdog+0xd31/0x1210 [ 287.930938][ T28] watchdog+0xd4f/0x1210 [ 287.935186][ T28] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.941170][ T28] ? lockdep_hardirqs_on+0x7d/0x110 [ 287.946379][ T28] ? __kthread_parkme+0x14b/0x220 [ 287.951408][ T28] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.957393][ T28] kthread+0x2c6/0x3a0 [ 287.961465][ T28] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.966666][ T28] ? kthread_complete_and_exit+0x40/0x40 [ 287.972304][ T28] ret_from_fork+0x45/0x80 [ 287.976731][ T28] ? kthread_complete_and_exit+0x40/0x40 [ 287.982369][ T28] ret_from_fork_asm+0x11/0x20 [ 287.987148][ T28] [ 287.990331][ T28] Kernel Offset: disabled [ 287.994644][ T28] Rebooting in 86400 seconds..