./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3621607338

<...>
Warning: Permanently added '10.128.0.180' (ED25519) to the list of known hosts.
execve("./syz-executor3621607338", ["./syz-executor3621607338"], 0x7ffe24e14de0 /* 10 vars */) = 0
brk(NULL)                               = 0x555556fb4000
brk(0x555556fb4d00)                     = 0x555556fb4d00
arch_prctl(ARCH_SET_FS, 0x555556fb4380) = 0
set_tid_address(0x555556fb4650)         = 5074
set_robust_list(0x555556fb4660, 24)     = 0
rseq(0x555556fb4ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor3621607338", 4096) = 28
getrandom("\x84\xb7\xc6\xa5\x09\xe1\xd6\xee", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555556fb4d00
brk(0x555556fd5d00)                     = 0x555556fd5d00
brk(0x555556fd6000)                     = 0x555556fd6000
mprotect(0x7f49d34e4000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556fb4650) = 5075
./strace-static-x86_64: Process 5075 attached
[pid  5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5075] set_robust_list(0x555556fb4660, 24) = 0
./strace-static-x86_64: Process 5076 attached
[pid  5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5076] set_robust_list(0x555556fb4660, 24./strace-static-x86_64: Process 5077 attached
 <unfinished ...>
[pid  5074] <... clone resumed>, child_tidptr=0x555556fb4650) = 5076
[pid  5076] <... set_robust_list resumed>) = 0
[pid  5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5077] set_robust_list(0x555556fb4660, 24 <unfinished ...>
[pid  5076] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5075] <... clone resumed>, child_tidptr=0x555556fb4650) = 5077
[pid  5077] <... set_robust_list resumed>) = 0
[pid  5077] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
./strace-static-x86_64: Process 5079 attached
./strace-static-x86_64: Process 5078 attached
[pid  5077] setpgid(0, 0)               = 0
[pid  5074] <... clone resumed>, child_tidptr=0x555556fb4650) = 5079
[pid  5079] set_robust_list(0x555556fb4660, 24 <unfinished ...>
[pid  5078] set_robust_list(0x555556fb4660, 24 <unfinished ...>
[pid  5077] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5076] <... clone resumed>, child_tidptr=0x555556fb4650) = 5078
[pid  5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5079] <... set_robust_list resumed>) = 0
[pid  5078] <... set_robust_list resumed>) = 0
[pid  5077] <... openat resumed>)       = 3
[pid  5079] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5080 attached
 <unfinished ...>
[pid  5078] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5077] write(3, "1000", 4 <unfinished ...>
[pid  5074] <... clone resumed>, child_tidptr=0x555556fb4650) = 5080
./strace-static-x86_64: Process 5081 attached
[pid  5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5081] set_robust_list(0x555556fb4660, 24 <unfinished ...>
[pid  5080] set_robust_list(0x555556fb4660, 24 <unfinished ...>
[pid  5079] <... clone resumed>, child_tidptr=0x555556fb4650) = 5081
[pid  5078] <... prctl resumed>)        = 0
[pid  5077] <... write resumed>)        = 4
[pid  5081] <... set_robust_list resumed>) = 0
[pid  5080] <... set_robust_list resumed>) = 0
[pid  5078] setpgid(0, 0 <unfinished ...>
[pid  5077] close(3./strace-static-x86_64: Process 5082 attached
 <unfinished ...>
[pid  5074] <... clone resumed>, child_tidptr=0x555556fb4650) = 5082
[pid  5078] <... setpgid resumed>)      = 0
[pid  5077] <... close resumed>)        = 0
[pid  5074] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5082] set_robust_list(0x555556fb4660, 24 <unfinished ...>
[pid  5078] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5077] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME <unfinished ...>
[pid  5080] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5082] <... set_robust_list resumed>) = 0
[pid  5081] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5082] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5078] <... openat resumed>)       = 3
[pid  5077] <... openat resumed>)       = 3
[pid  5081] <... prctl resumed>)        = 0
[pid  5078] write(3, "1000", 4 <unfinished ...>
[pid  5077] dup(3 <unfinished ...>
[pid  5081] setpgid(0, 0 <unfinished ...>
[pid  5078] <... write resumed>)        = 4
./strace-static-x86_64: Process 5085 attached
./strace-static-x86_64: Process 5084 attached
./strace-static-x86_64: Process 5083 attached
[pid  5074] <... clone resumed>, child_tidptr=0x555556fb4650) = 5083
[pid  5081] <... setpgid resumed>)      = 0
[pid  5078] close(3 <unfinished ...>
[pid  5077] <... dup resumed>)          = 4
[pid  5081] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5078] <... close resumed>)        = 0
[pid  5077] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 <unfinished ...>
[pid  5080] <... clone resumed>, child_tidptr=0x555556fb4650) = 5084
[pid  5083] set_robust_list(0x555556fb4660, 24 <unfinished ...>
[pid  5082] <... clone resumed>, child_tidptr=0x555556fb4650) = 5085
[pid  5083] <... set_robust_list resumed>) = 0
[pid  5083] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5078] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME <unfinished ...>
[pid  5085] set_robust_list(0x555556fb4660, 24) = 0
[pid  5084] set_robust_list(0x555556fb4660, 24./strace-static-x86_64: Process 5086 attached
 <unfinished ...>
[pid  5085] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5084] <... set_robust_list resumed>) = 0
[pid  5081] <... openat resumed>)       = 3
[pid  5078] <... openat resumed>)       = 3
[pid  5085] <... prctl resumed>)        = 0
[pid  5084] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5083] <... clone resumed>, child_tidptr=0x555556fb4650) = 5086
[pid  5086] set_robust_list(0x555556fb4660, 24 <unfinished ...>
[pid  5085] setpgid(0, 0 <unfinished ...>
[pid  5084] <... prctl resumed>)        = 0
[pid  5081] write(3, "1000", 4 <unfinished ...>
[pid  5078] dup(3 <unfinished ...>
[pid  5086] <... set_robust_list resumed>) = 0
[pid  5085] <... setpgid resumed>)      = 0
[pid  5084] setpgid(0, 0 <unfinished ...>
[pid  5078] <... dup resumed>)          = 4
[pid  5086] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5085] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5084] <... setpgid resumed>)      = 0
[pid  5081] <... write resumed>)        = 4
[pid  5078] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 <unfinished ...>
[pid  5086] <... prctl resumed>)        = 0
[pid  5084] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5081] close(3 <unfinished ...>
[pid  5086] setpgid(0, 0)               = 0
[pid  5085] <... openat resumed>)       = 3
[pid  5081] <... close resumed>)        = 0
[pid  5086] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5085] write(3, "1000", 4 <unfinished ...>
[pid  5084] <... openat resumed>)       = 3
[pid  5081] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME <unfinished ...>
[pid  5086] <... openat resumed>)       = 3
[pid  5085] <... write resumed>)        = 4
[pid  5084] write(3, "1000", 4 <unfinished ...>
[pid  5085] close(3 <unfinished ...>
[pid  5084] <... write resumed>)        = 4
[pid  5085] <... close resumed>)        = 0
[pid  5084] close(3)                    = 0
[pid  5086] write(3, "1000", 4 <unfinished ...>
[pid  5084] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME <unfinished ...>
[pid  5086] <... write resumed>)        = 4
[pid  5085] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME <unfinished ...>
[pid  5081] <... openat resumed>)       = 3
[pid  5086] close(3 <unfinished ...>
[pid  5084] <... openat resumed>)       = 3
[pid  5086] <... close resumed>)        = 0
[pid  5086] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME <unfinished ...>
[pid  5085] <... openat resumed>)       = 3
[pid  5084] dup(3 <unfinished ...>
[pid  5081] dup(3 <unfinished ...>
[pid  5085] dup(3 <unfinished ...>
[pid  5084] <... dup resumed>)          = 4
[pid  5081] <... dup resumed>)          = 4
[pid  5086] <... openat resumed>)       = 3
[pid  5085] <... dup resumed>)          = 4
[pid  5084] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 <unfinished ...>
[pid  5081] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 <unfinished ...>
[pid  5086] dup(3 <unfinished ...>
[pid  5085] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 <unfinished ...>
[pid  5086] <... dup resumed>)          = 4
[pid  5086] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 <unfinished ...>
[pid  5075] kill(-5077, SIGKILL)        = 0
[pid  5075] kill(5077, SIGKILL)         = 0
[pid  5076] kill(-5078, SIGKILL)        = 0
[pid  5076] kill(5078, SIGKILL)         = 0
[pid  5079] kill(-5081, SIGKILL)        = 0
[pid  5079] kill(5081, SIGKILL)         = 0
[pid  5082] kill(-5085, SIGKILL)        = 0
[pid  5082] kill(5085, SIGKILL)         = 0
[pid  5080] kill(-5084, SIGKILL)        = 0
[pid  5080] kill(5084, SIGKILL)         = 0
[pid  5083] kill(-5086, SIGKILL)        = 0
[pid  5083] kill(5086, SIGKILL)         = 0
[pid  5076] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5076] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5082] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5076] getdents64(3,  <unfinished ...>
[pid  5082] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5076] <... getdents64 resumed>0x555556fb56f0 /* 2 entries */, 32768) = 48
[pid  5082] getdents64(3,  <unfinished ...>
[pid  5076] getdents64(3,  <unfinished ...>
[pid  5082] <... getdents64 resumed>0x555556fb56f0 /* 2 entries */, 32768) = 48
[pid  5076] <... getdents64 resumed>0x555556fb56f0 /* 0 entries */, 32768) = 0
[pid  5082] getdents64(3,  <unfinished ...>
[pid  5076] close(3 <unfinished ...>
[pid  5082] <... getdents64 resumed>0x555556fb56f0 /* 0 entries */, 32768) = 0
[pid  5076] <... close resumed>)        = 0
[pid  5082] close(3)                    = 0
[pid  5075] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5075] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5075] getdents64(3, 0x555556fb56f0 /* 2 entries */, 32768) = 48
[pid  5083] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5080] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5075] getdents64(3, 0x555556fb56f0 /* 0 entries */, 32768) = 0
[pid  5080] <... openat resumed>)       = 3
[pid  5075] close(3)                    = 0
[pid  5080] newfstatat(3, "",  <unfinished ...>
[pid  5083] <... openat resumed>)       = 3
[pid  5083] newfstatat(3, "",  <unfinished ...>
[pid  5080] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5083] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5083] getdents64(3,  <unfinished ...>
[pid  5080] getdents64(3,  <unfinished ...>
[pid  5083] <... getdents64 resumed>0x555556fb56f0 /* 2 entries */, 32768) = 48
[pid  5083] getdents64(3,  <unfinished ...>
[pid  5080] <... getdents64 resumed>0x555556fb56f0 /* 2 entries */, 32768) = 48
[pid  5080] getdents64(3, 0x555556fb56f0 /* 0 entries */, 32768) = 0
[pid  5080] close(3)                    = 0
[pid  5083] <... getdents64 resumed>0x555556fb56f0 /* 0 entries */, 32768) = 0
[pid  5079] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5083] close(3)                    = 0
[pid  5079] <... openat resumed>)       = 3
[pid  5079] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5079] getdents64(3, 0x555556fb56f0 /* 2 entries */, 32768) = 48
[pid  5079] getdents64(3, 0x555556fb56f0 /* 0 entries */, 32768) = 0
[pid  5079] close(3)                    = 0
[   86.988459][ T1138] cfg80211: failed to load regulatory.db
[pid  5077] <... fallocate resumed>)    = ?
[pid  5077] +++ killed by SIGKILL +++
[pid  5075] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5077, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=6981 /* 69.81 s */} ---
[pid  5075] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5104 attached
, child_tidptr=0x555556fb4650) = 5104
[pid  5104] set_robust_list(0x555556fb4660, 24) = 0
[pid  5104] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5104] setpgid(0, 0)               = 0
[pid  5104] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5104] write(3, "1000", 4)         = 4
[pid  5104] close(3)                    = 0
[pid  5104] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3
[pid  5104] dup(3)                      = 4
[pid  5104] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 <unfinished ...>
[pid  5075] kill(-5104, SIGKILL)        = 0
[pid  5075] kill(5104, SIGKILL)         = 0
[pid  5075] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5075] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5075] getdents64(3, 0x555556fb56f0 /* 2 entries */, 32768) = 48
[pid  5075] getdents64(3, 0x555556fb56f0 /* 0 entries */, 32768) = 0
[pid  5075] close(3)                    = 0
[pid  5078] <... fallocate resumed>)    = ?
[pid  5078] +++ killed by SIGKILL +++
[pid  5076] --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5078, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=6989 /* 69.89 s */} ---
[pid  5076] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5111 attached
, child_tidptr=0x555556fb4650) = 5111
[pid  5111] set_robust_list(0x555556fb4660, 24) = 0
[pid  5111] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5111] setpgid(0, 0)               = 0
[pid  5111] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5111] write(3, "1000", 4)         = 4
[pid  5111] close(3)                    = 0
[pid  5111] openat(AT_FDCWD, "/dev/nullb0", O_RDWR|O_NONBLOCK|O_SYNC|O_LARGEFILE|O_NOATIME) = 3
[pid  5111] dup(3)                      = 4
[pid  5111] fallocate(4, FALLOC_FL_KEEP_SIZE|FALLOC_FL_ZERO_RANGE, 0, 4503599644155904 <unfinished ...>
[pid  5076] kill(-5111, SIGKILL)        = 0
[pid  5076] kill(5111, SIGKILL)         = 0
[pid  5076] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5076] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5076] getdents64(3, 0x555556fb56f0 /* 2 entries */, 32768) = 48
[pid  5076] getdents64(3, 0x555556fb56f0 /* 0 entries */, 32768) = 0
[pid  5076] close(3)                    = 0
[  286.634758][   T29] INFO: task syz-executor362:5081 blocked for more than 143 seconds.
[  286.643579][   T29]       Not tainted 6.6.0-syzkaller-16039-gac347a0655db #0
[  286.651341][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.660074][   T29] task:syz-executor362 state:D stack:28144 pid:5081  tgid:5081  ppid:5079   flags:0x00004006
[  286.670343][   T29] Call Trace:
[  286.673639][   T29]  <TASK>
[  286.676665][   T29]  __schedule+0xee2/0x59a0
[  286.681206][   T29]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  286.687709][   T29]  ? print_usage_bug.part.0+0x670/0x670
[  286.693674][   T29]  ? io_schedule_timeout+0x150/0x150
[  286.699435][   T29]  ? schedule+0x1fa/0x270
[  286.704192][   T29]  ? reacquire_held_locks+0x4b0/0x4b0
[  286.710018][   T29]  ? rwsem_down_write_slowpath+0x48e/0x12a0
[  286.716441][   T29]  schedule+0xe7/0x270
[  286.720936][   T29]  schedule_preempt_disabled+0x13/0x20
[  286.726940][   T29]  rwsem_down_write_slowpath+0x53d/0x12a0
[  286.732712][   T29]  ? down_timeout+0x90/0x90
[  286.737381][   T29]  ? lock_sync+0x190/0x190
[  286.741843][   T29]  ? preempt_count_sub+0x150/0x150
[  286.747111][   T29]  down_write+0x1d3/0x200
[  286.752192][   T29]  ? rwsem_down_write_slowpath+0x12a0/0x12a0
[  286.758683][   T29]  blkdev_fallocate+0x1e9/0x450
[  286.764072][   T29]  ? file_to_blk_mode+0x1a0/0x1a0
[  286.769600][   T29]  vfs_fallocate+0x46c/0xe50
[  286.775082][   T29]  __x64_sys_fallocate+0xd5/0x140
[  286.780536][   T29]  do_syscall_64+0x3f/0x110
[  286.785515][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  286.791894][   T29] RIP: 0033:0x7f49d3471b29
[  286.796371][   T29] RSP: 002b:00007ffecfef7a78 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  286.804872][   T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f49d3471b29
[  286.812865][   T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004
[  286.821317][   T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0
[  286.829776][   T29] R10: 0010000001002000 R11: 0000000000000246 R12: 0000000000000001
[  286.838191][   T29] R13: 00007ffecfef7c98 R14: 00007ffecfef7aa0 R15: 00007ffecfef7a90
[  286.846647][   T29]  </TASK>
[  286.849712][   T29] INFO: task syz-executor362:5085 blocked for more than 143 seconds.
[  286.858473][   T29]       Not tainted 6.6.0-syzkaller-16039-gac347a0655db #0
[  286.866133][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.875265][   T29] task:syz-executor362 state:D stack:28144 pid:5085  tgid:5085  ppid:5082   flags:0x00004006
[  286.885909][   T29] Call Trace:
[  286.889221][   T29]  <TASK>
[  286.892173][   T29]  __schedule+0xee2/0x59a0
[  286.896657][   T29]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  286.902680][   T29]  ? print_usage_bug.part.0+0x670/0x670
[  286.908328][   T29]  ? io_schedule_timeout+0x150/0x150
[  286.914057][   T29]  ? schedule+0x1fa/0x270
[  286.918822][   T29]  ? reacquire_held_locks+0x4b0/0x4b0
[  286.924675][   T29]  ? rwsem_down_write_slowpath+0x48e/0x12a0
[  286.930999][   T29]  schedule+0xe7/0x270
[  286.935508][   T29]  schedule_preempt_disabled+0x13/0x20
[  286.940996][   T29]  rwsem_down_write_slowpath+0x53d/0x12a0
[  286.947227][   T29]  ? down_timeout+0x90/0x90
[  286.952170][   T29]  ? lock_sync+0x190/0x190
[  286.957059][   T29]  ? preempt_count_sub+0x150/0x150
[  286.962220][   T29]  down_write+0x1d3/0x200
[  286.966633][   T29]  ? rwsem_down_write_slowpath+0x12a0/0x12a0
[  286.972659][   T29]  blkdev_fallocate+0x1e9/0x450
[  286.977725][   T29]  ? file_to_blk_mode+0x1a0/0x1a0
[  286.982778][   T29]  vfs_fallocate+0x46c/0xe50
[  286.987537][   T29]  __x64_sys_fallocate+0xd5/0x140
[  286.992949][   T29]  do_syscall_64+0x3f/0x110
[  286.997936][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  287.004263][   T29] RIP: 0033:0x7f49d3471b29
[  287.009123][   T29] RSP: 002b:00007ffecfef7a78 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  287.018009][   T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f49d3471b29
[  287.026455][   T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004
[  287.034945][   T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0
[  287.042947][   T29] R10: 0010000001002000 R11: 0000000000000246 R12: 0000000000000001
[  287.051412][   T29] R13: 00007ffecfef7c98 R14: 00007ffecfef7aa0 R15: 00007ffecfef7a90
[  287.059468][   T29]  </TASK>
[  287.062526][   T29] INFO: task syz-executor362:5086 blocked for more than 143 seconds.
[  287.071088][   T29]       Not tainted 6.6.0-syzkaller-16039-gac347a0655db #0
[  287.078731][   T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  287.087841][   T29] task:syz-executor362 state:D stack:27536 pid:5086  tgid:5086  ppid:5083   flags:0x00004006
[  287.098454][   T29] Call Trace:
[  287.101754][   T29]  <TASK>
[  287.105187][   T29]  __schedule+0xee2/0x59a0
[  287.110020][   T29]  ? lockdep_hardirqs_on_prepare+0x410/0x410
[  287.116502][   T29]  ? print_usage_bug.part.0+0x670/0x670
[  287.122492][   T29]  ? io_schedule_timeout+0x150/0x150
[  287.127865][   T29]  ? schedule+0x1fa/0x270
[  287.132219][   T29]  ? reacquire_held_locks+0x4b0/0x4b0
[  287.137657][   T29]  ? rwsem_down_write_slowpath+0x48e/0x12a0
[  287.143593][   T29]  schedule+0xe7/0x270
[  287.148131][   T29]  schedule_preempt_disabled+0x13/0x20
[  287.153971][   T29]  rwsem_down_write_slowpath+0x53d/0x12a0
[  287.160175][   T29]  ? down_timeout+0x90/0x90
[  287.165162][   T29]  ? lock_sync+0x190/0x190
[  287.169625][   T29]  ? preempt_count_sub+0x150/0x150
[  287.175192][   T29]  down_write+0x1d3/0x200
[  287.179973][   T29]  ? rwsem_down_write_slowpath+0x12a0/0x12a0
[  287.186473][   T29]  blkdev_fallocate+0x1e9/0x450
[  287.191725][   T29]  ? file_to_blk_mode+0x1a0/0x1a0
[  287.196816][   T29]  vfs_fallocate+0x46c/0xe50
[  287.201449][   T29]  __x64_sys_fallocate+0xd5/0x140
[  287.206567][   T29]  do_syscall_64+0x3f/0x110
[  287.211107][   T29]  entry_SYSCALL_64_after_hwframe+0x63/0x6b
[  287.217067][   T29] RIP: 0033:0x7f49d3471b29
[  287.221875][   T29] RSP: 002b:00007ffecfef7a78 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  287.230795][   T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f49d3471b29
[  287.239248][   T29] RDX: 0000000000000000 RSI: 0000000000000011 RDI: 0000000000000004
[  287.247677][   T29] RBP: 00000000000f4240 R08: 00000000000000a0 R09: 00000000000000a0
[  287.256117][   T29] R10: 0010000001002000 R11: 0000000000000246 R12: 0000000000000001
[  287.264564][   T29] R13: 00007ffecfef7c98 R14: 00007ffecfef7aa0 R15: 00007ffecfef7a90
[  287.272960][   T29]  </TASK>
[  287.276532][   T29] 
[  287.276532][   T29] Showing all locks held in the system:
[  287.284263][   T29] 3 locks held by kworker/0:0H/10:
[  287.289681][   T29]  #0: ffff8880b983c718 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x29/0x130
[  287.299803][   T29]  #1: ffff8880b9828888 (&per_cpu_ptr(group->pcpu, cpu)->seq){-.-.}-{0:0}, at: psi_task_switch+0x2d9/0x900
[  287.311726][   T29]  #2: ffffffff8cfacfe0 (rcu_read_lock){....}-{1:2}, at: blk_mq_run_work_fn+0x1c7/0x380
[  287.322006][   T29] 1 lock held by khungtaskd/29:
[  287.327327][   T29]  #0: ffffffff8cfacfe0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340
[  287.337617][   T29] 2 locks held by getty/4827:
[  287.342640][   T29]  #0: ffff88814aff20a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  287.352970][   T29]  #1: ffffc90002efe2f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc6/0x1490
[  287.363276][   T29] 1 lock held by syz-executor362/5081:
[  287.369395][   T29]  #0: ffff888148cc2040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450
[  287.380630][   T29] 1 lock held by syz-executor362/5084:
[  287.386657][   T29] 1 lock held by syz-executor362/5085:
[  287.392459][   T29]  #0: ffff888148cc2040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450
[  287.403247][   T29] 1 lock held by syz-executor362/5086:
[  287.408793][   T29]  #0: ffff888148cc2040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450
[  287.419917][   T29] 1 lock held by syz-executor362/5104:
[  287.425765][   T29]  #0: ffff888148cc2040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450
[  287.436855][   T29] 1 lock held by syz-executor362/5111:
[  287.442682][   T29]  #0: ffff888148cc2040 (mapping.invalidate_lock#2){++++}-{3:3}, at: blkdev_fallocate+0x1e9/0x450
[  287.453784][   T29] 
[  287.456627][   T29] =============================================
[  287.456627][   T29] 
[  287.465495][   T29] NMI backtrace for cpu 1
[  287.469841][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.6.0-syzkaller-16039-gac347a0655db #0
[  287.479297][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023
[  287.489351][   T29] Call Trace:
[  287.492627][   T29]  <TASK>
[  287.495742][   T29]  dump_stack_lvl+0xd9/0x1b0
[  287.500437][   T29]  nmi_cpu_backtrace+0x277/0x380
[  287.505395][   T29]  ? lapic_can_unplug_cpu+0xa0/0xa0
[  287.510622][   T29]  nmi_trigger_cpumask_backtrace+0x299/0x300
[  287.516616][   T29]  watchdog+0xf87/0x1210
[  287.520903][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  287.526891][   T29]  ? lockdep_hardirqs_on+0x7d/0x100
[  287.532095][   T29]  ? __kthread_parkme+0x14b/0x220
[  287.537136][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  287.543121][   T29]  kthread+0x33c/0x440
[  287.547193][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[  287.552398][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  287.558036][   T29]  ret_from_fork+0x45/0x80
[  287.562458][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  287.568094][   T29]  ret_from_fork_asm+0x11/0x20
[  287.572897][   T29]  </TASK>
[  287.576224][   T29] Sending NMI from CPU 1 to CPUs 0:
[  287.581452][    C0] NMI backtrace for cpu 0
[  287.581461][    C0] CPU: 0 PID: 137 Comm: kworker/u4:5 Not tainted 6.6.0-syzkaller-16039-gac347a0655db #0
[  287.581483][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023
[  287.581496][    C0] Workqueue: events_unbound toggle_allocation_gate
[  287.581553][    C0] RIP: 0010:x2apic_send_IPI+0x96/0xe0
[  287.581575][    C0] Code: 8b 13 0f ae f0 0f ae e8 b9 00 04 00 00 41 83 fc 02 44 89 e0 48 0f 44 c1 48 c1 e2 20 b9 30 08 00 00 48 09 d0 48 c1 ea 20 0f 30 <66> 90 5b 5d 41 5c c3 5b 31 d2 48 89 c6 bf 30 08 00 00 5d 41 5c e9
[  287.581595][    C0] RSP: 0018:ffffc90002d97900 EFLAGS: 00000202
[  287.581610][    C0] RAX: 00000001000000fb RBX: ffff8880b9921a2c RCX: 0000000000000830
[  287.581624][    C0] RDX: 0000000000000001 RSI: 00000000000000fb RDI: ffffffff8ca70a68
[  287.581636][    C0] RBP: 0000000000000001 R08: 0000000000000001 R09: 0000000000000000
[  287.581649][    C0] R10: 0000000000000001 R11: 0000000000000000 R12: 00000000000000fb
[  287.581660][    C0] R13: dffffc0000000000 R14: 0000000000000001 R15: ffff8880b983d8d0
[  287.581674][    C0] FS:  0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[  287.581694][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  287.581708][    C0] CR2: 000055bb84204600 CR3: 000000000cd77000 CR4: 00000000003506f0
[  287.581721][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  287.581733][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  287.581745][    C0] Call Trace:
[  287.581751][    C0]  <NMI>
[  287.581757][    C0]  ? show_regs+0x8f/0xa0
[  287.581781][    C0]  ? nmi_cpu_backtrace+0x1d4/0x380
[  287.581809][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x10
[  287.581837][    C0]  ? nmi_handle+0x1a6/0x570
[  287.581861][    C0]  ? x2apic_send_IPI+0x96/0xe0
[  287.581881][    C0]  ? default_do_nmi+0x69/0x160
[  287.581912][    C0]  ? exc_nmi+0x186/0x200
[  287.581941][    C0]  ? end_repeat_nmi+0xf/0x2a
[  287.581970][    C0]  ? x2apic_send_IPI+0x96/0xe0
[  287.581989][    C0]  ? x2apic_send_IPI+0x96/0xe0
[  287.582009][    C0]  ? x2apic_send_IPI+0x96/0xe0
[  287.582028][    C0]  </NMI>
[  287.582034][    C0]  <TASK>
[  287.582044][    C0]  ? on_each_cpu_cond_mask+0x40/0x90
[  287.582076][    C0]  smp_call_function_many_cond+0x12df/0x1570
[  287.582109][    C0]  ? __text_poke+0xc90/0xc90
[  287.582128][    C0]  ? __kmem_cache_alloc_node+0xc3/0x310
[  287.582154][    C0]  ? generic_smp_call_function_single_interrupt+0x20/0x20
[  287.582190][    C0]  ? apply_relocation+0x830/0x830
[  287.582210][    C0]  ? __text_poke+0xc90/0xc90
[  287.582229][    C0]  on_each_cpu_cond_mask+0x40/0x90
[  287.582260][    C0]  ? __kmem_cache_alloc_node+0xc3/0x310
[  287.582283][    C0]  text_poke_bp_batch+0x746/0x960
[  287.582304][    C0]  ? __kmem_cache_alloc_node+0xc4/0x310
[  287.582329][    C0]  ? do_sync_core+0x40/0x40
[  287.582347][    C0]  ? __jump_label_patch+0x1db/0x3f0
[  287.582374][    C0]  ? text_poke_queue+0xef/0x180
[  287.582399][    C0]  ? arch_jump_label_transform_queue+0xc0/0x110
[  287.582433][    C0]  text_poke_finish+0x30/0x40
[  287.582453][    C0]  arch_jump_label_transform_apply+0x1c/0x30
[  287.582482][    C0]  jump_label_update+0x32e/0x410
[  287.582513][    C0]  static_key_enable_cpuslocked+0x1b5/0x270
[  287.582537][    C0]  static_key_enable+0x1a/0x20
[  287.582559][    C0]  toggle_allocation_gate+0xf4/0x250
[  287.582590][    C0]  ? wake_up_kfence_timer+0x30/0x30
[  287.582626][    C0]  process_one_work+0x884/0x15c0
[  287.582655][    C0]  ? lock_sync+0x190/0x190
[  287.582682][    C0]  ? init_worker_pool+0x770/0x770
[  287.582712][    C0]  ? assign_work+0x1a0/0x240
[  287.582737][    C0]  worker_thread+0x8b9/0x1290
[  287.582767][    C0]  ? __kthread_parkme+0x14b/0x220
[  287.582789][    C0]  ? process_one_work+0x15c0/0x15c0
[  287.582814][    C0]  kthread+0x33c/0x440
[  287.582834][    C0]  ? _raw_spin_unlock_irq+0x23/0x50
[  287.582859][    C0]  ? kthread_complete_and_exit+0x40/0x40
[  287.582883][    C0]  ret_from_fork+0x45/0x80
[  287.582906][    C0]  ? kthread_complete_and_exit+0x40/0x40
[  287.582930][    C0]  ret_from_fork_asm+0x11/0x20
[  287.582964][    C0]  </TASK>
[  287.582971][    C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.519 msecs
[  287.583815][   T29] Kernel panic - not syncing: hung_task: blocked tasks
[  287.987617][   T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.6.0-syzkaller-16039-gac347a0655db #0
[  287.997081][   T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023
[  288.007137][   T29] Call Trace:
[  288.010415][   T29]  <TASK>
[  288.013353][   T29]  dump_stack_lvl+0xd9/0x1b0
[  288.017960][   T29]  panic+0x6dc/0x790
[  288.021868][   T29]  ? panic_smp_self_stop+0xa0/0xa0
[  288.026989][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  288.032398][   T29]  ? lapic_can_unplug_cpu+0xa0/0xa0
[  288.037617][   T29]  ? preempt_schedule_thunk+0x1a/0x30
[  288.043006][   T29]  ? watchdog+0xd3e/0x1210
[  288.047429][   T29]  ? watchdog+0xd31/0x1210
[  288.051869][   T29]  watchdog+0xd4f/0x1210
[  288.056130][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  288.062112][   T29]  ? lockdep_hardirqs_on+0x7d/0x100
[  288.067321][   T29]  ? __kthread_parkme+0x14b/0x220
[  288.072349][   T29]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  288.078335][   T29]  kthread+0x33c/0x440
[  288.082406][   T29]  ? _raw_spin_unlock_irq+0x23/0x50
[  288.087612][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  288.093251][   T29]  ret_from_fork+0x45/0x80
[  288.097681][   T29]  ? kthread_complete_and_exit+0x40/0x40
[  288.103334][   T29]  ret_from_fork_asm+0x11/0x20
[  288.108127][   T29]  </TASK>
[  288.111365][   T29] Kernel Offset: disabled
[  288.115676][   T29] Rebooting in 86400 seconds..