./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor2475225305 <...> Warning: Permanently added '10.128.1.10' (ECDSA) to the list of known hosts. execve("./syz-executor2475225305", ["./syz-executor2475225305"], 0x7ffe0c593580 /* 10 vars */) = 0 brk(NULL) = 0x5555558e1000 brk(0x5555558e1c40) = 0x5555558e1c40 arch_prctl(ARCH_SET_FS, 0x5555558e1300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 set_tid_address(0x5555558e15d0) = 5084 set_robust_list(0x5555558e15e0, 24) = 0 rt_sigaction(SIGRTMIN, {sa_handler=0x7f44ae61c5d0, sa_mask=[], sa_flags=SA_RESTORER|SA_SIGINFO, sa_restorer=0x7f44ae61cca0}, NULL, 8) = 0 rt_sigaction(SIGRT_1, {sa_handler=0x7f44ae61c670, sa_mask=[], sa_flags=SA_RESTORER|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f44ae61cca0}, NULL, 8) = 0 rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor2475225305", 4096) = 28 brk(0x555555902c40) = 0x555555902c40 brk(0x555555903000) = 0x555555903000 mprotect(0x7f44ae6de000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 unshare(CLONE_NEWPID) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5085 attached , child_tidptr=0x5555558e15d0) = 5085 [pid 5085] set_robust_list(0x5555558e15e0, 24) = 0 [pid 5085] mount(NULL, "/sys/fs/fuse/connections", "fusectl", 0, NULL) = -1 EBUSY (Device or resource busy) [pid 5085] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5085] setsid() = 1 [pid 5085] prlimit64(0, RLIMIT_AS, {rlim_cur=204800*1024, rlim_max=204800*1024}, NULL) = 0 [pid 5085] prlimit64(0, RLIMIT_MEMLOCK, {rlim_cur=32768*1024, rlim_max=32768*1024}, NULL) = 0 [pid 5085] prlimit64(0, RLIMIT_FSIZE, {rlim_cur=139264*1024, rlim_max=139264*1024}, NULL) = 0 [pid 5085] prlimit64(0, RLIMIT_STACK, {rlim_cur=1024*1024, rlim_max=1024*1024}, NULL) = 0 [pid 5085] prlimit64(0, RLIMIT_CORE, {rlim_cur=131072*1024, rlim_max=131072*1024}, NULL) = 0 [pid 5085] prlimit64(0, RLIMIT_NOFILE, {rlim_cur=256, rlim_max=256}, NULL) = 0 [pid 5085] unshare(CLONE_NEWNS) = 0 [pid 5085] mount(NULL, "/", NULL, MS_REC|MS_PRIVATE, NULL) = 0 [pid 5085] unshare(CLONE_NEWIPC) = 0 [pid 5085] unshare(CLONE_NEWCGROUP) = 0 [pid 5085] unshare(CLONE_NEWUTS) = 0 [pid 5085] unshare(CLONE_SYSVSEM) = 0 [pid 5085] openat(AT_FDCWD, "/proc/sys/kernel/shmmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5085] write(3, "16777216", 8) = 8 [pid 5085] close(3) = 0 [pid 5085] openat(AT_FDCWD, "/proc/sys/kernel/shmall", O_WRONLY|O_CLOEXEC) = 3 [pid 5085] write(3, "536870912", 9) = 9 [pid 5085] close(3) = 0 [pid 5085] openat(AT_FDCWD, "/proc/sys/kernel/shmmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5085] write(3, "1024", 4) = 4 [pid 5085] close(3) = 0 [pid 5085] openat(AT_FDCWD, "/proc/sys/kernel/msgmax", O_WRONLY|O_CLOEXEC) = 3 [pid 5085] write(3, "8192", 4) = 4 [pid 5085] close(3) = 0 [pid 5085] openat(AT_FDCWD, "/proc/sys/kernel/msgmni", O_WRONLY|O_CLOEXEC) = 3 [pid 5085] write(3, "1024", 4) = 4 [pid 5085] close(3) = 0 [pid 5085] openat(AT_FDCWD, "/proc/sys/kernel/msgmnb", O_WRONLY|O_CLOEXEC) = 3 [pid 5085] write(3, "1024", 4) = 4 [pid 5085] close(3) = 0 [pid 5085] openat(AT_FDCWD, "/proc/sys/kernel/sem", O_WRONLY|O_CLOEXEC) = 3 [pid 5085] write(3, "1024 1048576 500 1024", 21) = 21 [pid 5085] close(3) = 0 [pid 5085] getpid() = 1 [pid 5085] capget({version=_LINUX_CAPABILITY_VERSION_3, pid=1}, {effective=1< [pid 5087] set_robust_list(0x5555558e15e0, 24) = 0 [pid 5087] prctl(PR_SET_PDEATHSIG, SIGKILL [pid 5085] <... clone resumed>, child_tidptr=0x5555558e15d0) = 2 [pid 5087] <... prctl resumed>) = 0 [pid 5087] setpgid(0, 0) = 0 [pid 5087] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5087] write(3, "1000", 4) = 4 [pid 5087] close(3) = 0 [pid 5087] futex(0x7f44ae6e44cc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5087] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f44ae5ec000 [pid 5087] mprotect(0x7f44ae5ed000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5087] clone(child_stack=0x7f44ae60c3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, parent_tid=[3], tls=0x7f44ae60c700, child_tidptr=0x7f44ae60c9d0) = 3 [pid 5087] futex(0x7f44ae6e44c8, FUTEX_WAKE_PRIVATE, 1000000./strace-static-x86_64: Process 5088 attached ) = 0 [pid 5087] futex(0x7f44ae6e44cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5088] set_robust_list(0x7f44ae60c9e0, 24) = 0 [pid 5088] socketpair(AF_UNIX, SOCK_STREAM, 0, [3, 4]) = 0 [pid 5088] futex(0x7f44ae6e44cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5087] <... futex resumed>) = 0 [pid 5087] futex(0x7f44ae6e44c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5087] futex(0x7f44ae6e44cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5088] <... futex resumed>) = 1 [pid 5088] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY) = 5 [pid 5088] futex(0x7f44ae6e44cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5087] <... futex resumed>) = 0 [pid 5087] futex(0x7f44ae6e44c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5087] futex(0x7f44ae6e44cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5088] <... futex resumed>) = 1 [pid 5088] ioctl(5, NBD_SET_SOCK, 3) = 0 [pid 5088] futex(0x7f44ae6e44cc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5087] <... futex resumed>) = 0 [pid 5088] openat(AT_FDCWD, "/dev/nbd0", O_RDONLY|O_NOATIME [pid 5087] futex(0x7f44ae6e44c8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5088] <... openat resumed>) = 6 [pid 5087] <... futex resumed>) = 0 [pid 5088] futex(0x7f44ae6e44cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5087] futex(0x7f44ae6e44cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5088] <... futex resumed>) = 0 [pid 5087] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5088] ioctl(6, NBD_DO_IT [pid 5087] futex(0x7f44ae6e44c8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5087] futex(0x7f44ae6e44cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 5087] futex(0x7f44ae6e44dc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5087] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f44ae5cb000 [pid 5087] mprotect(0x7f44ae5cc000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5087] clone(child_stack=0x7f44ae5eb3f0, flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID./strace-static-x86_64: Process 5090 attached , parent_tid=[4], tls=0x7f44ae5eb700, child_tidptr=0x7f44ae5eb9d0) = 4 [pid 5090] set_robust_list(0x7f44ae5eb9e0, 24) = 0 [pid 5090] futex(0x7f44ae6e44d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5087] futex(0x7f44ae6e44d8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5090] <... futex resumed>) = 0 [pid 5087] <... futex resumed>) = 1 [pid 5090] ioctl(6, NBD_SET_SIZE_BLOCKS, 65536 [pid 5087] futex(0x7f44ae6e44dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5090] <... ioctl resumed>) = 0 [pid 5090] futex(0x7f44ae6e44dc, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5087] <... futex resumed>) = 0 [ 63.951649][ T5090] nbd0: detected capacity change from 0 to 131072 [pid 5090] futex(0x7f44ae6e44d8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5087] close(3) = 0 [pid 5087] close(4 [pid 5088] <... ioctl resumed>) = 0 [pid 5088] futex(0x7f44ae6e44cc, FUTEX_WAKE_PRIVATE, 1000000 [pid 5087] <... close resumed>) = 0 [pid 5088] <... futex resumed>) = 0 [pid 5087] close(5 [ 64.097387][ T4402] block nbd0: Receive control failed (result -104) [pid 5088] futex(0x7f44ae6e44c8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5085] kill(-2, SIGKILL [pid 5090] <... futex resumed>) = ? [pid 5088] <... futex resumed>) = ? [pid 5085] <... kill resumed>) = 0 [pid 5090] +++ killed by SIGKILL +++ [pid 5088] +++ killed by SIGKILL +++ [pid 5085] kill(2, SIGKILL) = 0 [pid 5085] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5085] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 5085] getdents64(3, 0x5555558e2620 /* 2 entries */, 32768) = 48 [pid 5085] getdents64(3, 0x5555558e2620 /* 0 entries */, 32768) = 0 [pid 5085] close(3) = 0 [ 76.531449][ T898] cfg80211: failed to load regulatory.db [ 94.449860][ T52] block nbd0: Possible stuck request ffff88801e950000: control (read@0,4096B). Runtime 30 seconds [ 124.529740][ T52] block nbd0: Possible stuck request ffff88801e950000: control (read@0,4096B). Runtime 60 seconds [ 126.553715][ T4447] udevd[4447]: worker [5089] /devices/virtual/block/nbd0 is taking a long time [ 154.609346][ T52] block nbd0: Possible stuck request ffff88801e950000: control (read@0,4096B). Runtime 90 seconds [ 184.689375][ T52] block nbd0: Possible stuck request ffff88801e950000: control (read@0,4096B). Runtime 120 seconds [ 214.769400][ T52] block nbd0: Possible stuck request ffff88801e950000: control (read@0,4096B). Runtime 150 seconds [ 244.849417][ T52] block nbd0: Possible stuck request ffff88801e950000: control (read@0,4096B). Runtime 180 seconds [ 246.713822][ T4447] udevd[4447]: worker [5089] /devices/virtual/block/nbd0 timeout; kill it [ 246.722753][ T4447] udevd[4447]: seq 7532 '/devices/virtual/block/nbd0' killed [ 274.929450][ T52] block nbd0: Possible stuck request ffff88801e950000: control (read@0,4096B). Runtime 210 seconds [ 286.449282][ T28] INFO: task syz-executor247:5087 blocked for more than 143 seconds. [ 286.457438][ T28] Not tainted 6.3.0-rc3-next-20230322-syzkaller #0 [ 286.464605][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.473321][ T28] task:syz-executor247 state:D stack:27440 pid:5087 ppid:5085 flags:0x00004006 [ 286.482596][ T28] Call Trace: [ 286.485886][ T28] [ 286.488810][ T28] __schedule+0x1d23/0x5650 [ 286.493430][ T28] ? lockdep_hardirqs_on_prepare+0x410/0x410 [ 286.499464][ T28] ? mark_lock.part.0+0xee/0x1970 [ 286.504492][ T28] ? io_schedule_timeout+0x150/0x150 [ 286.509809][ T28] ? __mutex_lock+0xa36/0x1350 [ 286.514604][ T28] schedule+0xde/0x1a0 [ 286.518669][ T28] schedule_preempt_disabled+0x13/0x20 [ 286.524166][ T28] __mutex_lock+0xa3b/0x1350 [ 286.528784][ T28] ? blkdev_put+0xc0/0x770 [ 286.533305][ T28] ? mutex_lock_io_nested+0x11a0/0x11a0 [ 286.538873][ T28] ? locks_check_ctx_file_list+0x1d/0x320 [ 286.544737][ T28] ? lock_acquire+0x32/0xc0 [ 286.549288][ T28] ? do_raw_spin_unlock+0x175/0x230 [ 286.554484][ T28] ? _raw_spin_unlock+0x28/0x40 [ 286.559365][ T28] ? locks_remove_file+0x2fb/0x5b0 [ 286.564510][ T28] blkdev_put+0xc0/0x770 [ 286.568753][ T28] blkdev_close+0x68/0x80 [ 286.573119][ T28] __fput+0x27c/0xa90 [ 286.577195][ T28] ? blkdev_fsync+0xa0/0xa0 [ 286.581764][ T28] task_work_run+0x16f/0x270 [ 286.586442][ T28] ? task_work_cancel+0x30/0x30 [ 286.591383][ T28] ptrace_notify+0x118/0x140 [ 286.596036][ T28] syscall_exit_to_user_mode_prepare+0x129/0x220 [ 286.602426][ T28] syscall_exit_to_user_mode+0xd/0x50 [ 286.607832][ T28] do_syscall_64+0x46/0xb0 [ 286.612289][ T28] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 286.618272][ T28] RIP: 0033:0x7f44ae61bbbb [ 286.622718][ T28] RSP: 002b:00007fffa2fdd5c0 EFLAGS: 00000293 ORIG_RAX: 0000000000000003 [ 286.631691][ T28] RAX: 0000000000000000 RBX: 0000000000000006 RCX: 00007f44ae61bbbb [ 286.639695][ T28] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000005 [ 286.647938][ T28] RBP: 0000000000000006 R08: 0000000000000000 R09: 0000000000000064 [ 286.655941][ T28] R10: 0000000000000000 R11: 0000000000000293 R12: 000000000000f2be [ 286.664142][ T28] R13: 00007f44ae6e44dc R14: 00007fffa2fdd620 R15: 00007f44ae6e44c0 [ 286.672182][ T28] [ 286.675237][ T28] [ 286.675237][ T28] Showing all locks held in the system: [ 286.683083][ T28] 1 lock held by rcu_tasks_kthre/13: [ 286.688408][ T28] #0: ffffffff8c795a70 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x31/0xd80 [ 286.698947][ T28] 1 lock held by rcu_tasks_trace/14: [ 286.704274][ T28] #0: ffffffff8c795770 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x31/0xd80 [ 286.715291][ T28] 1 lock held by khungtaskd/28: [ 286.720178][ T28] #0: ffffffff8c796680 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x51/0x390 [ 286.730118][ T28] 2 locks held by getty/4763: [ 286.734797][ T28] #0: ffff888028452098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x26/0x80 [ 286.744740][ T28] #1: ffffc900015902f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xef4/0x13e0 [ 286.755170][ T28] 1 lock held by syz-executor247/5087: [ 286.760666][ T28] #0: ffff888146b3b4c8 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_put+0xc0/0x770 [ 286.770062][ T28] 1 lock held by udevd/5089: [ 286.774659][ T28] #0: ffff888146b3b4c8 (&disk->open_mutex){+.+.}-{3:3}, at: blkdev_get_by_dev.part.0+0x9b/0xb80 [ 286.785246][ T28] [ 286.787586][ T28] ============================================= [ 286.787586][ T28] [ 286.796093][ T28] NMI backtrace for cpu 1 [ 286.800430][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.3.0-rc3-next-20230322-syzkaller #0 [ 286.809707][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 286.819758][ T28] Call Trace: [ 286.823026][ T28] [ 286.826122][ T28] dump_stack_lvl+0xd9/0x150 [ 286.830791][ T28] nmi_cpu_backtrace+0x29c/0x350 [ 286.835757][ T28] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 286.841021][ T28] nmi_trigger_cpumask_backtrace+0x2a4/0x300 [ 286.847011][ T28] watchdog+0xe16/0x1090 [ 286.851301][ T28] ? proc_dohung_task_timeout_secs+0x80/0x80 [ 286.857296][ T28] kthread+0x33e/0x440 [ 286.861456][ T28] ? kthread_complete_and_exit+0x40/0x40 [ 286.867099][ T28] ret_from_fork+0x1f/0x30 [ 286.871544][ T28] [ 286.874666][ T28] Sending NMI from CPU 1 to CPUs 0: [ 286.879917][ C0] NMI backtrace for cpu 0 [ 286.879926][ C0] CPU: 0 PID: 2801 Comm: kworker/u4:6 Not tainted 6.3.0-rc3-next-20230322-syzkaller #0 [ 286.879945][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 286.879955][ C0] Workqueue: events_unbound toggle_allocation_gate [ 286.880043][ C0] RIP: 0010:decay_load+0x9/0xa0 [ 286.880083][ C0] Code: 0c 48 2d b0 01 00 00 5b c3 31 c0 5b c3 0f 0b eb f0 e8 bb 9e 77 00 eb b5 e8 d4 9e 77 00 eb d6 66 90 48 81 fe e0 07 00 00 77 65 <55> 89 f0 48 89 e5 41 54 53 48 89 fb 48 83 e4 f0 48 83 fe 1f 77 52 [ 286.880100][ C0] RSP: 0018:ffffc9000c1c7698 EFLAGS: 00000087 [ 286.880113][ C0] RAX: 000000000000001a RBX: 0000000000000000 RCX: 0000000000000000 [ 286.880124][ C0] RDX: 0000000000000000 RSI: 0000000000000001 RDI: 000000000000ba7e [ 286.880135][ C0] RBP: ffff8880b993c500 R08: ffff8880b993d0d0 R09: ffff8880b993d0c8 [ 286.880147][ C0] R10: fffffbfff1cf1072 R11: ffff8880b993d0d8 R12: 0000000000000001 [ 286.880159][ C0] R13: ffff8880b993d0dc R14: 0000000000000000 R15: 0000000000000000 [ 286.880170][ C0] FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 286.880188][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 286.880202][ C0] CR2: 0000563246f0f680 CR3: 000000000c571000 CR4: 00000000003506f0 [ 286.880221][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 286.880231][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 286.880242][ C0] Call Trace: [ 286.880247][ C0] [ 286.880252][ C0] update_irq_load_avg+0x74d/0xd40 [ 286.880283][ C0] update_rq_clock+0x3e5/0xaa0 [ 286.880324][ C0] load_balance+0xb00/0x2c40 [ 286.880342][ C0] ? trace_lock_acquire+0x12d/0x180 [ 286.880369][ C0] ? find_busiest_group+0x9f0/0x9f0 [ 286.880398][ C0] newidle_balance+0x6e2/0x11e0 [ 286.880422][ C0] ? load_balance+0x2c40/0x2c40 [ 286.880445][ C0] pick_next_task_fair+0x9a/0x1290 [ 286.880468][ C0] __schedule+0x45c/0x5650 [ 286.880497][ C0] ? prepare_to_wait_event+0xd0/0x6a0 [ 286.880518][ C0] ? lock_downgrade+0x670/0x690 [ 286.880540][ C0] ? io_schedule_timeout+0x150/0x150 [ 286.880565][ C0] ? mark_held_locks+0x9f/0xe0 [ 286.880585][ C0] ? _raw_spin_unlock_irqrestore+0x54/0x70 [ 286.880604][ C0] ? lockdep_hardirqs_on+0x7d/0x100 [ 286.880631][ C0] ? _raw_spin_unlock_irqrestore+0x41/0x70 [ 286.880651][ C0] schedule+0xde/0x1a0 [ 286.880674][ C0] toggle_allocation_gate+0x1ad/0x230 [ 286.880703][ C0] ? wake_up_kfence_timer+0x30/0x30 [ 286.880731][ C0] ? trace_lock_acquire+0x12d/0x180 [ 286.880749][ C0] ? prepare_to_wait_exclusive+0x2c0/0x2c0 [ 286.880771][ C0] ? process_one_work+0x8b7/0x15e0 [ 286.880794][ C0] ? lock_acquire+0x32/0xc0 [ 286.880814][ C0] ? process_one_work+0x8b7/0x15e0 [ 286.880839][ C0] process_one_work+0x99a/0x15e0 [ 286.880867][ C0] ? pwq_dec_nr_in_flight+0x2a0/0x2a0 [ 286.880889][ C0] ? rcu_is_watching+0x12/0xb0 [ 286.880916][ C0] ? spin_bug+0x1c0/0x1c0 [ 286.880937][ C0] ? lock_acquire+0x32/0xc0 [ 286.880956][ C0] ? worker_thread+0x16d/0x10c0 [ 286.880982][ C0] worker_thread+0x67d/0x10c0 [ 286.881010][ C0] ? process_one_work+0x15e0/0x15e0 [ 286.881034][ C0] kthread+0x33e/0x440 [ 286.881053][ C0] ? kthread_complete_and_exit+0x40/0x40 [ 286.881075][ C0] ret_from_fork+0x1f/0x30 [ 286.881106][ C0] [ 286.881112][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.195 msecs [ 286.881919][ T28] Kernel panic - not syncing: hung_task: blocked tasks [ 286.881930][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.3.0-rc3-next-20230322-syzkaller #0 [ 286.881954][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 03/02/2023 [ 286.881965][ T28] Call Trace: [ 286.881970][ T28] [ 286.881977][ T28] dump_stack_lvl+0xd9/0x150 [ 286.882011][ T28] panic+0x688/0x730 [ 286.882072][ T28] ? panic_smp_self_stop+0x90/0x90 [ 286.882106][ T28] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 286.882128][ T28] ? preempt_schedule_thunk+0x1a/0x20 [ 286.882164][ T28] ? watchdog+0xbe8/0x1090 [ 286.882194][ T28] watchdog+0xbf9/0x1090 [ 286.882222][ T28] ? proc_dohung_task_timeout_secs+0x80/0x80 [ 286.882252][ T28] kthread+0x33e/0x440 [ 286.882275][ T28] ? kthread_complete_and_exit+0x40/0x40 [ 286.882304][ T28] ret_from_fork+0x1f/0x30 [ 286.882347][ T28] [ 286.885948][ T28] Kernel Offset: disabled [ 287.307089][ T28] Rebooting in 86400 seconds..