./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3597773211 <...> Warning: Permanently added '10.128.0.164' (ECDSA) to the list of known hosts. execve("./syz-executor3597773211", ["./syz-executor3597773211"], 0x7ffce1edd1f0 /* 10 vars */) = 0 brk(NULL) = 0x55555705b000 brk(0x55555705bc40) = 0x55555705bc40 arch_prctl(ARCH_SET_FS, 0x55555705b300) = 0 uname({sysname="Linux", nodename="syzkaller", ...}) = 0 readlink("/proc/self/exe", "/root/syz-executor3597773211", 4096) = 28 brk(0x55555707cc40) = 0x55555707cc40 brk(0x55555707d000) = 0x55555707d000 mprotect(0x7fac26e81000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 getpid() = 5072 openat(AT_FDCWD, "/sys/kernel/debug/x86/nmi_longest_ns", O_WRONLY|O_CLOEXEC) = 3 write(3, "10000000000", 11) = 11 close(3) = 0 openat(AT_FDCWD, "/proc/sys/kernel/hung_task_check_interval_secs", O_WRONLY|O_CLOEXEC) = 3 write(3, "20", 2) = 2 close(3) = 0 openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_kallsyms", O_WRONLY|O_CLOEXEC) = 3 write(3, "1", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_harden", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/kernel/kptr_restrict", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/kernel/softlockup_all_cpu_backtrace", O_WRONLY|O_CLOEXEC) = 3 write(3, "1", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3 write(3, "100", 3) = 3 close(3) = 0 openat(AT_FDCWD, "/proc/sys/vm/oom_dump_tasks", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/debug/exception-trace", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/kernel/printk", O_WRONLY|O_CLOEXEC) = 3 write(3, "7 4 1 3", 7) = 7 close(3) = 0 openat(AT_FDCWD, "/proc/sys/kernel/keys/gc_delay", O_WRONLY|O_CLOEXEC) = 3 write(3, "1", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/vm/oom_kill_allocating_task", O_WRONLY|O_CLOEXEC) = 3 write(3, "1", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/kernel/ctrl-alt-del", O_WRONLY|O_CLOEXEC) = 3 write(3, "0", 1) = 1 close(3) = 0 openat(AT_FDCWD, "/proc/sys/kernel/cad_pid", O_WRONLY|O_CLOEXEC) = 3 write(3, "5072", 4) = 4 close(3) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55555705b5d0) = 5073 ./strace-static-x86_64: Process 5073 attached [pid 5073] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5073] setpgid(0, 0) = 0 [pid 5073] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5073] write(3, "1000", 4) = 4 [pid 5073] close(3) = 0 [pid 5073] memfd_create("syzkaller", 0) = 3 [pid 5073] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fac1e9bb000 [ 65.988699][ T5073] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5073 'syz-executor359' [pid 5073] write(3, "\x58\x46\x53\x42\x00\x00\x02\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x5e\x62\x73\xb8\x21\x67\x42\xbb\x91\x1b\x41\x8a\xa1\x4a\x12\x61\x00\x00\x00\x00\x00\x00\xff\x80\x00\x00\x00\x00\x00\x00\x00\x20\x00\x00\x00\x00\x00\x00\x00\x21\x00\x00\x00\x00\x00\x00\x00\x22\x00\x00\x00\x08\x00\x00\x80\x00\x00\x00\x00\x02\x00\x00\x00\x00\x00\x00\x0b\x40"..., 33554432) = 33554432 [pid 5073] munmap(0x7fac1e9bb000, 33554432) = 0 [pid 5073] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5073] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5073] close(3) = 0 [pid 5073] mkdir("./file0", 0777) = 0 [ 66.405787][ T5073] loop0: detected capacity change from 0 to 65536 [ 66.425629][ T5073] XFS (loop0): Deprecated V4 format (crc=0) will not be supported after September 2030. [ 66.436582][ T5073] XFS (loop0): Mounting V4 Filesystem 5e6273b8-2167-42bb-911b-418aa14a1261 [ 66.447921][ T5073] XFS (loop0): totally zeroed log [pid 5073] mount("/dev/loop0", "./file0", "xfs", MS_LAZYTIME, "prjquota,nolazytime,grpid,noalign,uqnoenforce,,nouuid") = 0 [pid 5073] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3 [pid 5073] chdir("./file0") = 0 [pid 5073] ioctl(4, LOOP_CLR_FD) = 0 [pid 5073] close(4) = 0 [pid 5073] openat(AT_FDCWD, "cgroup.controllers", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4 [pid 5073] ioctl(4, FS_IOC_SETFSLABEL, "") = 0 [ 66.456395][ T5073] XFS (loop0): Ending clean mount [ 66.464447][ T5073] XFS (loop0): Quotacheck needed: Please wait. [ 66.488500][ T5073] XFS (loop0): Quotacheck: Done. [ 66.494105][ T5073] xfs filesystem being mounted at /root/file0 supports timestamps until 2038 (0x7fffffff) [ 66.525779][ T5073] syz-executor359: attempt to access beyond end of device [ 66.525779][ T5073] loop0: rw=432129, sector=65536, nr_sectors = 64 limit=65536 [ 66.541841][ T52] XFS (loop0): log I/O error -5 [ 66.546967][ T52] XFS (loop0): Filesystem has been shut down due to log error (0x2). [ 66.555482][ T52] XFS (loop0): Please unmount the filesystem and rectify the problem(s). [pid 5073] ioctl(4, FS_IOC_SETFSLABEL, "" [pid 5072] kill(-5073, SIGKILL) = 0 [pid 5072] kill(5073, SIGKILL) = 0 [pid 5072] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5072] fstat(3, {st_mode=S_IFDIR|0755, st_size=0, ...}) = 0 [pid 5072] getdents64(3, 0x55555705c620 /* 2 entries */, 32768) = 48 [pid 5072] getdents64(3, 0x55555705c620 /* 0 entries */, 32768) = 0 [pid 5072] close(3) = 0 [ 81.296786][ T897] cfg80211: failed to load regulatory.db [ 229.774955][ T28] INFO: task kworker/0:1H:52 blocked for more than 143 seconds. [ 229.782752][ T28] Not tainted 6.2.0-syzkaller-09238-gd2980d8d8265 #0 [ 229.790027][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 229.798880][ T28] task:kworker/0:1H state:D stack:25824 pid:52 ppid:2 flags:0x00004000 [ 229.808231][ T28] Workqueue: xfs-log/loop0 xlog_ioend_work [ 229.814177][ T28] Call Trace: [ 229.817556][ T28] [ 229.820514][ T28] __schedule+0x17d8/0x4990 [ 229.825126][ T28] ? release_firmware_map_entry+0x190/0x190 [ 229.831053][ T28] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 229.837133][ T28] ? print_irqtrace_events+0x220/0x220 [ 229.842632][ T28] ? _raw_spin_unlock_irq+0x23/0x50 [ 229.847902][ T28] ? lockdep_hardirqs_on+0x98/0x140 [ 229.853145][ T28] schedule+0xc3/0x180 [ 229.857305][ T28] schedule_timeout+0xb0/0x310 [ 229.862107][ T28] ? console_conditional_schedule+0x40/0x40 [ 229.868104][ T28] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 229.874123][ T28] ? do_raw_spin_unlock+0x13b/0x8b0 [ 229.879410][ T28] ? _raw_spin_unlock_irq+0x23/0x50 [ 229.884646][ T28] ? lockdep_hardirqs_on+0x98/0x140 [ 229.889928][ T28] ___down_common+0x33e/0x5e0 [ 229.894643][ T28] ? __down_common+0x470/0x470 [ 229.899506][ T28] ? rcu_read_lock_sched_held+0x8d/0x130 [ 229.905217][ T28] ? _raw_spin_lock_irqsave+0xe1/0x120 [ 229.910681][ T28] ? _raw_spin_lock+0x40/0x40 [ 229.915459][ T28] __down_common+0xcd/0x470 [ 229.920009][ T28] down+0x84/0xc0 [ 229.923694][ T28] ? xfs_buf_item_unpin+0x29b/0x9b0 [ 229.928985][ T28] xfs_buf_lock+0x1fa/0x780 [ 229.933536][ T28] xfs_buf_item_unpin+0x29b/0x9b0 [ 229.938660][ T28] ? xfs_buf_item_pin+0x3b0/0x3b0 [ 229.943710][ T28] xfs_trans_committed_bulk+0x346/0x830 [ 229.949322][ T28] ? xfs_trans_del_item+0x100/0x100 [ 229.954540][ T28] ? rcu_read_lock_sched_held+0x8d/0x130 [ 229.960272][ T28] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 229.966373][ T28] ? do_raw_spin_unlock+0x13b/0x8b0 [ 229.971583][ T28] xlog_cil_committed+0x26d/0xfb0 [ 229.976713][ T28] ? _raw_spin_unlock_irqrestore+0x8f/0x140 [ 229.982635][ T28] ? lockdep_hardirqs_on+0x98/0x140 [ 229.987904][ T28] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 229.993839][ T28] ? xlog_cil_process_committed+0x1a0/0x1a0 [ 229.999850][ T28] ? xlog_state_shutdown_callbacks+0x2b2/0x3b0 [ 230.006061][ T28] ? __lock_acquire+0x1f80/0x1f80 [ 230.011103][ T28] xlog_cil_process_committed+0x159/0x1a0 [ 230.017022][ T28] xlog_state_shutdown_callbacks+0x2ba/0x3b0 [ 230.023042][ T28] ? xlog_assign_tail_lsn+0x80/0x80 [ 230.028316][ T28] ? do_raw_spin_unlock+0x13b/0x8b0 [ 230.033544][ T28] xlog_force_shutdown+0x32c/0x390 [ 230.038814][ T28] xlog_ioend_work+0xad/0x100 [ 230.043536][ T28] process_one_work+0x915/0x13a0 [ 230.048602][ T28] ? worker_detach_from_pool+0x290/0x290 [ 230.054282][ T28] ? _raw_spin_lock_irqsave+0x120/0x120 [ 230.059978][ T28] ? kthread_data+0x52/0xc0 [ 230.064511][ T28] ? wq_worker_running+0x9b/0x1a0 [ 230.069619][ T28] worker_thread+0xa63/0x1210 [ 230.074331][ T28] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 230.080325][ T28] ? _raw_spin_unlock+0x40/0x40 [ 230.085246][ T28] kthread+0x270/0x300 [ 230.089319][ T28] ? pr_cont_work+0x5e0/0x5e0 [ 230.093994][ T28] ? kthread_blkcg+0xd0/0xd0 [ 230.098662][ T28] ret_from_fork+0x1f/0x30 [ 230.103145][ T28] [ 230.106340][ T28] INFO: task syz-executor359:5073 blocked for more than 143 seconds. [ 230.114425][ T28] Not tainted 6.2.0-syzkaller-09238-gd2980d8d8265 #0 [ 230.121706][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 230.130442][ T28] task:syz-executor359 state:D stack:23624 pid:5073 ppid:5072 flags:0x00004004 [ 230.139746][ T28] Call Trace: [ 230.143046][ T28] [ 230.146082][ T28] __schedule+0x17d8/0x4990 [ 230.150673][ T28] ? preempt_schedule+0xdd/0xf0 [ 230.155641][ T28] ? release_firmware_map_entry+0x190/0x190 [ 230.161567][ T28] ? preempt_schedule+0xdd/0xf0 [ 230.166546][ T28] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 230.172486][ T28] ? preempt_schedule_thunk+0x1a/0x20 [ 230.178002][ T28] schedule+0xc3/0x180 [ 230.182109][ T28] xlog_wait+0x16e/0x1e0 [ 230.186428][ T28] ? xlog_wait_on_iclog+0x650/0x650 [ 230.191652][ T28] ? do_task_dead+0xd0/0xd0 [ 230.196271][ T28] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 230.202289][ T28] ? xlog_force_lsn+0x76e/0x910 [ 230.207218][ T28] ? xlog_force_lsn+0x836/0x910 [ 230.212098][ T28] xlog_wait_on_iclog+0x3a5/0x650 [ 230.217213][ T28] xfs_log_force_seq+0x1da/0x450 [ 230.222182][ T28] __xfs_trans_commit+0xbcd/0x1130 [ 230.227360][ T28] ? xfs_trans_commit+0x20/0x20 [ 230.232244][ T28] xfs_sync_sb_buf+0x14f/0x1e0 [ 230.237097][ T28] ? xfs_update_secondary_sbs+0x8d0/0x8d0 [ 230.242845][ T28] ? do_raw_spin_unlock+0x13b/0x8b0 [ 230.248115][ T28] xfs_file_ioctl+0x1448/0x1850 [ 230.253003][ T28] ? xfs_ioc_swapext+0x590/0x590 [ 230.258039][ T28] ? rcu_read_lock_sched_held+0x8d/0x130 [ 230.263797][ T28] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 230.269860][ T28] ? do_vfs_ioctl+0x1c28/0x2b10 [ 230.274751][ T28] ? __x64_compat_sys_ioctl+0x90/0x90 [ 230.280211][ T28] ? __lock_acquire+0x1f80/0x1f80 [ 230.285295][ T28] ? lockdep_hardirqs_on+0x98/0x140 [ 230.290511][ T28] ? __kmem_cache_free+0x264/0x3c0 [ 230.295724][ T28] ? tomoyo_path_number_perm+0x663/0x840 [ 230.301393][ T28] ? tomoyo_path_number_perm+0x6e4/0x840 [ 230.307146][ T28] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 230.313164][ T28] ? smack_log+0x123/0x540 [ 230.317678][ T28] ? tomoyo_check_path_acl+0x1c0/0x1c0 [ 230.323175][ T28] ? smk_access+0x4b0/0x4b0 [ 230.327749][ T28] ? smk_access+0x477/0x4b0 [ 230.332300][ T28] ? smk_tskacc+0x2ff/0x360 [ 230.336899][ T28] ? smack_file_ioctl+0x295/0x390 [ 230.341959][ T28] ? smack_file_alloc_security+0xe0/0xe0 [ 230.347671][ T28] ? do_notify_parent+0xf50/0xf50 [ 230.352731][ T28] ? print_irqtrace_events+0x220/0x220 [ 230.358270][ T28] ? bpf_lsm_file_ioctl+0x9/0x10 [ 230.363243][ T28] ? security_file_ioctl+0x81/0xa0 [ 230.368404][ T28] ? xfs_ioc_swapext+0x590/0x590 [ 230.373372][ T28] __se_sys_ioctl+0xf1/0x160 [ 230.378159][ T28] do_syscall_64+0x41/0xc0 [ 230.382605][ T28] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 230.388585][ T28] RIP: 0033:0x7fac26e0ff49 [ 230.393024][ T28] RSP: 002b:00007fffe47996f8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 230.401609][ T28] RAX: ffffffffffffffda RBX: 00007fffe4799810 RCX: 00007fac26e0ff49 [ 230.409724][ T28] RDX: 0000000020000000 RSI: 0000000041009432 RDI: 0000000000000004 [ 230.417897][ T28] RBP: 0000000000000000 R08: 0000000000000140 R09: 0000000000000140 [ 230.425954][ T28] R10: 0000000000000140 R11: 0000000000000246 R12: 00007fffe4799730 [ 230.433939][ T28] R13: 00007fffe4799810 R14: 431bde82d7b634db R15: 00007fffe4799710 [ 230.442021][ T28] [ 230.445106][ T28] [ 230.445106][ T28] Showing all locks held in the system: [ 230.452840][ T28] 1 lock held by kworker/u4:1/11: [ 230.457972][ T28] #0: ffff8880b993be98 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140 [ 230.467990][ T28] 1 lock held by rcu_tasks_kthre/12: [ 230.473271][ T28] #0: ffffffff8cf27b70 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xd20 [ 230.483797][ T28] 1 lock held by rcu_tasks_trace/13: [ 230.489121][ T28] #0: ffffffff8cf28370 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xd20 [ 230.500181][ T28] 1 lock held by khungtaskd/28: [ 230.505068][ T28] #0: ffffffff8cf279a0 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x0/0x30 [ 230.514402][ T28] 2 locks held by kworker/0:1H/52: [ 230.519675][ T28] #0: ffff888027b13138 ((wq_completion)xfs-log/loop0){+.+.}-{0:0}, at: process_one_work+0x77f/0x13a0 [ 230.530733][ T28] #1: ffffc90000bd7d20 ((work_completion)(&iclog->ic_end_io_work)){+.+.}-{0:0}, at: process_one_work+0x7c6/0x13a0 [ 230.542956][ T28] 2 locks held by getty/4748: [ 230.547730][ T28] #0: ffff88814a02d098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 230.557607][ T28] #1: ffffc900015902f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6ab/0x1db0 [ 230.567856][ T28] 1 lock held by syz-executor359/5073: [ 230.573329][ T28] #0: ffff888028a02460 (sb_writers#10){.+.+}-{0:0}, at: mnt_want_write_file+0x5e/0x1f0 [ 230.583320][ T28] [ 230.585738][ T28] ============================================= [ 230.585738][ T28] [ 230.594174][ T28] NMI backtrace for cpu 0 [ 230.598516][ T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.2.0-syzkaller-09238-gd2980d8d8265 #0 [ 230.607963][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/16/2023 [ 230.618011][ T28] Call Trace: [ 230.621286][ T28] [ 230.624214][ T28] dump_stack_lvl+0x1e7/0x2d0 [ 230.628892][ T28] ? nf_tcp_handle_invalid+0x650/0x650 [ 230.634349][ T28] ? panic+0x770/0x770 [ 230.638426][ T28] nmi_cpu_backtrace+0x4e5/0x560 [ 230.643358][ T28] ? vprintk_emit+0x10d/0x1f0 [ 230.648036][ T28] ? nmi_trigger_cpumask_backtrace+0x410/0x410 [ 230.654182][ T28] ? _printk+0xd5/0x120 [ 230.658336][ T28] ? panic+0x770/0x770 [ 230.662425][ T28] ? __wake_up_klogd+0xcc/0x100 [ 230.667278][ T28] ? panic+0x770/0x770 [ 230.671355][ T28] ? __rcu_read_unlock+0x96/0x100 [ 230.676386][ T28] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 230.682450][ T28] nmi_trigger_cpumask_backtrace+0x1b4/0x410 [ 230.688442][ T28] watchdog+0x1024/0x1070 [ 230.692775][ T28] kthread+0x270/0x300 [ 230.696870][ T28] ? hungtask_pm_notify+0x90/0x90 [ 230.701923][ T28] ? kthread_blkcg+0xd0/0xd0 [ 230.706579][ T28] ret_from_fork+0x1f/0x30 [ 230.711038][ T28] [ 230.714197][ T28] Sending NMI from CPU 0 to CPUs 1: [ 230.719465][ C1] NMI backtrace for cpu 1 [ 230.719474][ C1] CPU: 1 PID: 11 Comm: kworker/u4:1 Not tainted 6.2.0-syzkaller-09238-gd2980d8d8265 #0 [ 230.719489][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/16/2023 [ 230.719498][ C1] Workqueue: events_unbound toggle_allocation_gate [ 230.719517][ C1] RIP: 0010:mark_lock+0x0/0x340 [ 230.719534][ C1] Code: 80 e1 07 80 c1 03 38 c1 0f 8c 73 ff ff ff 4c 89 ff e8 94 06 77 00 e9 66 ff ff ff e8 fa d4 47 09 66 2e 0f 1f 84 00 00 00 00 00 <55> 41 57 41 56 41 55 41 54 53 48 83 ec 10 49 89 f7 48 89 3c 24 49 [ 230.719545][ C1] RSP: 0018:ffffc90000107778 EFLAGS: 00000006 [ 230.719556][ C1] RAX: 0000000000040033 RBX: ffff88801664c580 RCX: ffffffff816c215a [ 230.719567][ C1] RDX: 0000000000000006 RSI: ffff88801664c580 RDI: ffff88801664ba80 [ 230.719577][ C1] RBP: ffffc90000107828 R08: dffffc0000000000 R09: fffffbfff205b439 [ 230.719588][ C1] R10: 0000000000000000 R11: dffffc0000000001 R12: ffff88801664c5a0 [ 230.719597][ C1] R13: 0000000000000005 R14: ffff88801664c4b0 R15: 1ffff11002cc9896 [ 230.719607][ C1] FS: 0000000000000000(0000) GS:ffff8880b9900000(0000) knlGS:0000000000000000 [ 230.719619][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 230.719629][ C1] CR2: 000055b384dcb070 CR3: 000000000cd30000 CR4: 00000000003506e0 [ 230.719642][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 230.719649][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 230.719658][ C1] Call Trace: [ 230.719662][ C1] [ 230.719666][ C1] lockdep_hardirqs_on_prepare+0x3a4/0x7a0 [ 230.719683][ C1] ? print_irqtrace_events+0x220/0x220 [ 230.719698][ C1] ? kmem_cache_alloc+0x64/0x280 [ 230.719720][ C1] ? kmem_cache_alloc+0x64/0x280 [ 230.719742][ C1] trace_hardirqs_on+0x28/0x40 [ 230.719759][ C1] __text_poke+0x7f8/0xa00 [ 230.719778][ C1] ? kmem_cache_alloc+0x64/0x280 [ 230.719800][ C1] ? __text_poke+0xa00/0xa00 [ 230.719818][ C1] ? text_poke+0x90/0x90 [ 230.719836][ C1] ? rcu_read_lock_sched_held+0x8d/0x130 [ 230.719859][ C1] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 230.719882][ C1] ? trace_raw_output_contention_end+0xd0/0xd0 [ 230.719906][ C1] ? trace_contention_end+0x80/0x1e0 [ 230.719931][ C1] text_poke_bp_batch+0x485/0x950 [ 230.719954][ C1] ? kmem_cache_alloc+0x64/0x280 [ 230.719976][ C1] ? text_poke_loc_init+0x680/0x680 [ 230.719996][ C1] ? arch_jump_label_transform_queue+0x81/0xd0 [ 230.720017][ C1] text_poke_finish+0x1a/0x30 [ 230.720035][ C1] arch_jump_label_transform_apply+0x17/0x30 [ 230.720051][ C1] static_key_disable_cpuslocked+0xce/0x1b0 [ 230.720074][ C1] static_key_disable+0x1a/0x20 [ 230.720093][ C1] toggle_allocation_gate+0x1b8/0x250 [ 230.720108][ C1] ? virt_to_slab+0x2b0/0x2b0 [ 230.720122][ C1] ? rcu_read_lock_sched_held+0x8d/0x130 [ 230.720144][ C1] ? __bpf_trace_rcu_stall_warning+0x10/0x10 [ 230.720167][ C1] ? do_raw_spin_unlock+0x13b/0x8b0 [ 230.720184][ C1] ? _raw_spin_unlock_irq+0x23/0x50 [ 230.720200][ C1] process_one_work+0x915/0x13a0 [ 230.720225][ C1] ? worker_detach_from_pool+0x290/0x290 [ 230.720245][ C1] ? _raw_spin_lock_irqsave+0x120/0x120 [ 230.720258][ C1] ? kthread_data+0x52/0xc0 [ 230.720273][ C1] ? wq_worker_running+0x9b/0x1a0 [ 230.720289][ C1] worker_thread+0xa63/0x1210 [ 230.720317][ C1] kthread+0x270/0x300 [ 230.720330][ C1] ? pr_cont_work+0x5e0/0x5e0 [ 230.720347][ C1] ? kthread_blkcg+0xd0/0xd0 [ 230.720361][ C1] ret_from_fork+0x1f/0x30 [ 230.720387][ C1] [ 230.720464][ T28] Kernel panic - not syncing: hung_task: blocked tasks [ 231.066335][ T28] CPU: 0 PID: 28 Comm: khungtaskd Not tainted 6.2.0-syzkaller-09238-gd2980d8d8265 #0 [ 231.075808][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/16/2023 [ 231.085864][ T28] Call Trace: [ 231.089149][ T28] [ 231.092085][ T28] dump_stack_lvl+0x1e7/0x2d0 [ 231.096780][ T28] ? nf_tcp_handle_invalid+0x650/0x650 [ 231.102243][ T28] ? vsnprintf+0x17f/0x1d80 [ 231.106757][ T28] ? panic+0x770/0x770 [ 231.110844][ T28] ? vscnprintf+0x5d/0x80 [ 231.115204][ T28] panic+0x31c/0x770 [ 231.119127][ T28] ? nmi_trigger_cpumask_backtrace+0x2d1/0x410 [ 231.125316][ T28] ? memcpy_page_flushcache+0x100/0x100 [ 231.130904][ T28] ? nmi_trigger_cpumask_backtrace+0x2da/0x410 [ 231.137078][ T28] watchdog+0x1062/0x1070 [ 231.141474][ T28] kthread+0x270/0x300 [ 231.145556][ T28] ? hungtask_pm_notify+0x90/0x90 [ 231.150601][ T28] ? kthread_blkcg+0xd0/0xd0 [ 231.155203][ T28] ret_from_fork+0x1f/0x30 [ 231.159647][ T28] [ 231.162983][ T28] Kernel Offset: disabled [ 231.167399][ T28] Rebooting in 86400 seconds..