[ 37.216129][ T29] audit: type=1400 audit(1736875382.614:88): avc: denied { mounton } for pid=882 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 37.216133][ T29] audit: type=1400 audit(1736875382.614:89): avc: denied { mount } for pid=882 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1
[ 37.633053][ T894] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 37.670994][ T918] modprobe (918) used greatest stack depth: 12216 bytes left
[ 39.787869][ T1409] syz-executor (1409) used greatest stack depth: 12032 bytes left
[ 50.102535][ T29] kauditd_printk_skb: 28 callbacks suppressed
[ 50.102540][ T29] audit: type=1400 audit(1736875395.594:118): avc: denied { transition } for pid=1866 comm="sshd" path="/bin/sh" dev="sda1" ino=89 scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 50.130478][ T29] audit: type=1400 audit(1736875395.594:119): avc: denied { noatsecure } for pid=1866 comm="sshd" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 50.149591][ T29] audit: type=1400 audit(1736875395.594:120): avc: denied { rlimitinh } for pid=1866 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[ 50.168364][ T29] audit: type=1400 audit(1736875395.594:121): avc: denied { siginh } for pid=1866 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
Warning: Permanently added '10.128.10.30' (ED25519) to the list of known hosts.
2025/01/14 17:23:22 ignoring optional flag "sandboxArg"="0"
2025/01/14 17:23:22 parsed 1 programs
[ 57.652263][ T29] audit: type=1400 audit(1736875403.144:122): avc: denied { unlink } for pid=1881 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 57.682364][ T1881] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 58.084781][ T29] audit: type=1401 audit(1736875403.564:123): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
2025/01/14 17:23:24 executed programs: 0
[ 59.169662][ T29] audit: type=1400 audit(1736875404.654:124): avc: denied { read } for pid=2413 comm="syz.4.19" name="msr" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[ 59.192013][ T29] audit: type=1400 audit(1736875404.654:125): avc: denied { open } for pid=2413 comm="syz.4.19" path="/dev/cpu/0/msr" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[ 59.215291][ T29] audit: type=1400 audit(1736875404.684:126): avc: denied { execute } for pid=2413 comm="syz.4.19" path=2F6D656D66643A01FDAE2E2BA68CB63F32193994532C7C783F55655BBDE1210333BC2723FF179B25F35B64202097F5479741C2D8F05571E62BA56C940BB607175CFB0421E4C4B1A21CFF433B94510DB67D9CEC430BCFEBE49A52E52C8203202864656C6574656429 dev="hugetlbfs" ino=2667 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
2025/01/14 17:23:29 executed programs: 87
2025/01/14 17:23:34 executed programs: 213
2025/01/14 17:23:39 executed programs: 343
2025/01/14 17:23:44 executed programs: 481
2025/01/14 17:23:49 executed programs: 642
2025/01/14 17:23:55 executed programs: 800
2025/01/14 17:24:00 executed programs: 925
2025/01/14 17:24:05 executed programs: 1093
2025/01/14 17:24:10 executed programs: 1245
2025/01/14 17:24:15 executed programs: 1374
2025/01/14 17:24:20 executed programs: 1560
2025/01/14 17:24:25 executed programs: 1706
2025/01/14 17:24:30 executed programs: 1932
2025/01/14 17:24:42 executed programs: 2002
2025/01/14 17:24:47 executed programs: 2224
2025/01/14 17:24:52 executed programs: 2423
2025/01/14 17:24:57 executed programs: 2625
2025/01/14 17:25:02 executed programs: 2828
2025/01/14 17:25:07 executed programs: 3077
2025/01/14 17:25:12 executed programs: 3299
2025/01/14 17:25:17 executed programs: 3531
2025/01/14 17:25:22 executed programs: 3774
2025/01/14 17:25:27 executed programs: 3957
[ 184.648544][T28124] modprobe (28124) used greatest stack depth: 11504 bytes left
2025/01/14 17:25:32 executed programs: 4121
2025/01/14 17:25:37 executed programs: 4282
2025/01/14 17:25:42 executed programs: 4538
2025/01/14 17:25:47 executed programs: 4809
2025/01/14 17:25:52 executed programs: 5081
2025/01/14 17:25:57 executed programs: 5339
2025/01/14 17:26:02 executed programs: 5598
[ 221.211909][ T30] INFO: task syz.3.393:6049 blocked for more than 143 seconds.
[ 221.219486][ T30] Not tainted 6.13.0-rc7-syzkaller #0
[ 221.225388][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 221.234122][ T30] task:syz.3.393 state:D stack:13952 pid:6049 tgid:6049 ppid:2418 flags:0x00000004
[ 221.244286][ T30] Call Trace:
[ 221.247542][ T30]
[ 221.250446][ T30] __schedule+0x4c4/0xac0
[ 221.254808][ T30] schedule+0x25/0x110
[ 221.258932][ T30] io_schedule+0x41/0x60
[ 221.263217][ T30] folio_wait_bit_common+0x136/0x380
[ 221.268476][ T30] ? __pfx_wake_page_function+0x10/0x10
[ 221.274047][ T30] __filemap_get_folio+0x196/0x2f0
[ 221.279130][ T30] hugetlb_fault+0x7e6/0xc10
[ 221.283749][ T30] handle_mm_fault+0x351/0x360
[ 221.288554][ T30] exc_page_fault+0x256/0x6e0
[ 221.293220][ T30] asm_exc_page_fault+0x26/0x30
[ 221.298042][ T30] RIP: 0033:0x7f7bae7d7208
[ 221.302461][ T30] RSP: 002b:00007ffee810e1c8 EFLAGS: 00010246
[ 221.308497][ T30] RAX: 0000000020000640 RBX: 0000000000000004 RCX: 006b6e696c766564
[ 221.316448][ T30] RDX: 0000000000000008 RSI: 006b6e696c766564 RDI: 0000000020000640
[ 221.324395][ T30] RBP: 00007f7bae9c7a80 R08: 00007f7bae690000 R09: 0000000000000001
[ 221.332354][ T30] R10: 0000000000000001 R11: 0000000000000009 R12: 000000000001292b
[ 221.340308][ T30] R13: 00007ffee810e2d0 R14: 0000000000000032 R15: fffffffffffffffe
[ 221.348265][ T30]
[ 221.355452][ T30] INFO: task syz.3.393:6050 blocked for more than 143 seconds.
[ 221.363056][ T30] Not tainted 6.13.0-rc7-syzkaller #0
[ 221.368924][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 221.377612][ T30] task:syz.3.393 state:D stack:13488 pid:6050 tgid:6049 ppid:2418 flags:0x00004004
[ 221.387792][ T30] Call Trace:
[ 221.391048][ T30]
[ 221.394015][ T30] __schedule+0x4c4/0xac0
[ 221.398325][ T30] schedule+0x25/0x110
[ 221.402422][ T30] schedule_preempt_disabled+0x13/0x30
[ 221.407890][ T30] __mutex_lock+0x573/0xa80
[ 221.412406][ T30] ? hugetlb_wp+0x6ff/0xc90
[ 221.416899][ T30] ? hugetlb_wp+0x6ff/0xc90
[ 221.421384][ T30] hugetlb_wp+0x6ff/0xc90
[ 221.425751][ T30] hugetlb_fault+0xa9e/0xc10
[ 221.430312][ T30] handle_mm_fault+0x351/0x360
[ 221.435091][ T30] exc_page_fault+0x161/0x6e0
[ 221.439738][ T30] asm_exc_page_fault+0x26/0x30
[ 221.444614][ T30] RIP: 0010:rep_movs_alternative+0x33/0x70
[ 221.450390][ T30] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
[ 221.470039][ T30] RSP: 0018:ffffc9000367fde0 EFLAGS: 00050246
[ 221.476120][ T30] RAX: 0000000000000000 RBX: 0000000000000008 RCX: 0000000000000008
[ 221.484118][ T30] RDX: 0000000020020bc8 RSI: ffffc9000367fe10 RDI: 0000000020020bc0
[ 221.492099][ T30] RBP: 0000000020020bc0 R08: 0000000000080000 R09: 0000000000000000
[ 221.500039][ T30] R10: 0000000000000001 R11: 0000000000000001 R12: ffffc9000367fe10
[ 221.508037][ T30] R13: 0000000000018ff8 R14: 0000000020019680 R15: 0000000000000000
[ 221.516031][ T30] _copy_to_user+0x56/0x70
[ 221.520421][ T30] msr_read+0x68/0xe0
[ 221.524427][ T30] vfs_read+0xe0/0x370
[ 221.528465][ T30] ? fdget_pos+0x166/0x1b0
[ 221.532885][ T30] ksys_read+0x6f/0xf0
[ 221.536921][ T30] do_syscall_64+0x6d/0x170
[ 221.541391][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 221.547261][ T30] RIP: 0033:0x7f7bae80dff9
[ 221.551645][ T30] RSP: 002b:00007f7bae28f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 221.560042][ T30] RAX: ffffffffffffffda RBX: 00007f7bae9c5f80 RCX: 00007f7bae80dff9
[ 221.568005][ T30] RDX: 0000000000018ff8 RSI: 0000000020019680 RDI: 0000000000000003
[ 221.575966][ T30] RBP: 00007f7bae880296 R08: 0000000000000000 R09: 0000000000000000
[ 221.583935][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 221.591895][ T30] R13: 0000000000000000 R14: 00007f7bae9c5f80 R15: 00007ffee810e068
[ 221.599841][ T30]
[ 221.605850][ T30]
[ 221.605850][ T30] Showing all locks held in the system:
[ 221.613623][ T30] 1 lock held by khungtaskd/30:
[ 221.618442][ T30] #0: ffffffff8277d540 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x36/0x120
[ 221.628265][ T30] 2 locks held by getty/840:
[ 221.632829][ T30] #0: ffff888100a8e0a0 (&tty->ldisc_sem){....}-{0:0}, at: tty_ldisc_ref_wait+0x23/0x60
[ 221.642545][ T30] #1: ffffc900001fb2f0 (&ldata->atomic_read_lock){....}-{3:3}, at: n_tty_read+0x54b/0x6a0
[ 221.652517][ T30] 3 locks held by syz.3.393/6049:
[ 221.657531][ T30] #0: ffff888107abf1a0 (&vma->vm_lock->lock){....}-{3:3}, at: lock_vma_under_rcu+0x86/0x1d0
[ 221.667676][ T30] #1: ffff888101ae9188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xc2/0xc10
[ 221.678244][ T30] #2: ffff8881046face8 (&resv_map->rw_sema){....}-{3:3}, at: hugetlb_fault+0xca/0xc10
[ 221.687868][ T30] 2 locks held by syz.3.393/6050:
[ 221.692958][ T30] #0: ffff88810376d2e0 (&mm->mmap_lock){....}-{3:3}, at: lock_mm_and_find_vma+0x26/0x280
[ 221.702861][ T30] #1: ffff888101ae9188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_wp+0x6ff/0xc90
[ 221.713267][ T30] 2 locks held by syz.2.487/6491:
[ 221.718255][ T30] #0: ffff888103768ae0 (&mm->mmap_lock){....}-{3:3}, at: lock_mm_and_find_vma+0x98/0x280
[ 221.728134][ T30] #1: ffff888101ae9188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xc2/0xc10
[ 221.738724][ T30] 3 locks held by syz.2.487/6499:
[ 221.743731][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 221.753363][ T30] #1: ffff888100ea7748 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 221.764296][ T30] #2: ffff888101ae9188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 221.775590][ T30] 3 locks held by syz.1.496/6532:
[ 221.780584][ T30] #0: ffff888101fee2d0 (&vma->vm_lock->lock){....}-{3:3}, at: lock_vma_under_rcu+0x86/0x1d0
[ 221.790900][ T30] #1: ffff888101ae93c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xc2/0xc10
[ 221.801509][ T30] #2: ffff8881097a1ee8 (&resv_map->rw_sema){....}-{3:3}, at: hugetlb_fault+0xca/0xc10
[ 221.811132][ T30] 2 locks held by syz.1.496/6533:
[ 221.816153][ T30] #0: ffff88810376f6e0 (&mm->mmap_lock){....}-{3:3}, at: lock_mm_and_find_vma+0x26/0x280
[ 221.826042][ T30] #1: ffff888101ae93c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_wp+0x6ff/0xc90
[ 221.836447][ T30] 2 locks held by syz.0.527/6655:
[ 221.841441][ T30] #0: ffff88810efc76f8 (&vma->vm_lock->lock){....}-{3:3}, at: lock_vma_under_rcu+0x86/0x1d0
[ 221.851596][ T30] #1: ffff888101ae93c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xc2/0xc10
[ 221.862178][ T30] 3 locks held by syz.0.527/6657:
[ 221.867176][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 221.876806][ T30] #1: ffff888119102e48 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 221.887733][ T30] #2: ffff888101ae93c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 221.898949][ T30] 3 locks held by syz.0.994/10384:
[ 221.904052][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 221.913684][ T30] #1: ffff88810dbbb2c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 221.924625][ T30] #2: ffff888101ae9188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 221.935812][ T30] 3 locks held by syz.2.1049/10617:
[ 221.940985][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 221.950640][ T30] #1: ffff88810dbbbbc8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 221.961573][ T30] #2: ffff888101ae93c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 221.972756][ T30] 3 locks held by syz.3.1301/11690:
[ 221.977920][ T30] #0: ffff88810ef595c8 (&vma->vm_lock->lock){....}-{3:3}, at: lock_vma_under_rcu+0x86/0x1d0
[ 221.988093][ T30] #1: ffff888101ae98d8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xc2/0xc10
[ 221.998687][ T30] #2: ffff888100f20ee8 (&resv_map->rw_sema){....}-{3:3}, at: hugetlb_fault+0xca/0xc10
[ 222.008309][ T30] 2 locks held by syz.3.1301/11691:
[ 222.013498][ T30] #0: ffff88810e3637e0 (&mm->mmap_lock){....}-{3:3}, at: lock_mm_and_find_vma+0x26/0x280
[ 222.023563][ T30] #1: ffff888101ae98d8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_wp+0x6ff/0xc90
[ 222.033968][ T30] 3 locks held by syz.1.1309/11716:
[ 222.039133][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 222.048782][ T30] #1: ffff88810dbba9c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 222.059718][ T30] #2: ffff888101ae98d8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 222.070921][ T30] 3 locks held by syz.4.1310/11722:
[ 222.076101][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 222.085726][ T30] #1: ffff888100ea60c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 222.096653][ T30] #2: ffff888101ae98d8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 222.107827][ T30] 3 locks held by syz.2.1854/15910:
2025/01/14 17:26:07 executed programs: 5826
[ 222.113007][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 222.122636][ T30] #1: ffff88810cf38148 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 222.133606][ T30] #2: ffff888101ae98d8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 222.145205][ T30] 3 locks held by syz.4.1859/15925:
[ 222.150370][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 222.159996][ T30] #1: ffff88810cf38ec8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 222.170933][ T30] #2: ffff888101ae93c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 222.182113][ T30] 3 locks held by syz.3.1873/15988:
[ 222.187280][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 222.196914][ T30] #1: ffff88810cf3a9c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 222.207836][ T30] #2: ffff888101ae98d8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 222.219026][ T30] 3 locks held by syz.0.1875/15992:
[ 222.224207][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 222.233829][ T30] #1: ffff88810cf3ae48 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 222.244747][ T30] #2: ffff888101ae93c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 222.256034][ T30] 3 locks held by syz.1.2006/16390:
[ 222.261197][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 222.270828][ T30] #1: ffff88810cf3b2c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 222.281754][ T30] #2: ffff888101ae9188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 222.292938][ T30] 3 locks held by syz.0.2201/19411:
[ 222.298109][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 222.307738][ T30] #1: ffff88810c33a9c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 222.318666][ T30] #2: ffff888101ae9188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 222.329853][ T30] 3 locks held by syz.1.2212/19444:
[ 222.335036][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 222.344913][ T30] #1: ffff88810c33b748 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 222.355838][ T30] #2: ffff888101ae98d8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 222.367028][ T30] 3 locks held by syz.3.2985/23333:
[ 222.372207][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 222.381816][ T30] #1: ffff88810b710a48 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 222.392742][ T30] #2: ffff888101ae9188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 222.403927][ T30] 3 locks held by syz.0.3769/26844:
[ 222.409098][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 222.418726][ T30] #1: ffff88810b780148 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 222.429649][ T30] #2: ffff888101ae93c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 222.440840][ T30] 3 locks held by syz.1.3778/26882:
[ 222.446017][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 222.455638][ T30] #1: ffff88810b7820c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 222.466566][ T30] #2: ffff888101ae98d8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 222.477761][ T30] 3 locks held by syz.3.3790/26935:
[ 222.482934][ T30] #0: ffff888101ac73f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[ 222.492554][ T30] #1: ffff88810b783748 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[ 222.503492][ T30] #2: ffff888101ae93c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[ 222.514687][ T30]
[ 222.516996][ T30] =============================================
[ 222.516996][ T30]
[ 222.525400][ T30] NMI backtrace for cpu 1
[ 222.529701][ T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.13.0-rc7-syzkaller #0
[ 222.538419][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 222.548437][ T30] Call Trace:
[ 222.551681][ T30]
[ 222.554577][ T30] dump_stack_lvl+0x5a/0x90
[ 222.559044][ T30] nmi_cpu_backtrace+0xd4/0x110
[ 222.563854][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 222.569790][ T30] nmi_trigger_cpumask_backtrace+0xd5/0x140
[ 222.575726][ T30] watchdog+0x63b/0x670
[ 222.579838][ T30] ? watchdog+0x1e8/0x670
[ 222.584147][ T30] ? __pfx_watchdog+0x10/0x10
[ 222.588780][ T30] kthread+0xd6/0x100
[ 222.592723][ T30] ? __pfx_kthread+0x10/0x10
[ 222.597269][ T30] ret_from_fork+0x2c/0x50
[ 222.601645][ T30] ? __pfx_kthread+0x10/0x10
[ 222.606191][ T30] ret_from_fork_asm+0x1a/0x30
[ 222.610911][ T30]
[ 222.613940][ T30] Sending NMI from CPU 1 to CPUs 0:
[ 222.619125][ C0] NMI backtrace for cpu 0
[ 222.619128][ C0] CPU: 0 UID: 0 PID: 27693 Comm: syz-executor Not tainted 6.13.0-rc7-syzkaller #0
[ 222.619131][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 09/13/2024
[ 222.619133][ C0] RIP: 0010:stack_trace_consume_entry+0x22/0x50
[ 222.619138][ C0] Code: 90 90 90 90 90 90 90 90 f3 0f 1e fa 8b 47 10 31 d2 3b 47 08 73 1d 8b 57 0c 85 d2 75 1d 48 8b 17 8d 48 01 89 4f 10 48 89 34 c2 <8b> 47 08 39 47 10 0f 92 c2 89 d0 c3 cc cc cc cc 83 ea 01 89 57 0c
[ 222.619140][ C0] RSP: 0018:ffffc90005ef77d8 EFLAGS: 00000246
[ 222.619143][ C0] RAX: 0000000000000004 RBX: ffffc90005ef77e0 RCX: 0000000000000005
[ 222.619145][ C0] RDX: ffffc90005ef78a8 RSI: ffffffff8127d0bf RDI: ffffc90005ef7880
[ 222.619147][ C0] RBP: ffffc90005ef7870 R08: ffffffff812dddc6 R09: ffffffff82975524
[ 222.619148][ C0] R10: 0000000000000010 R11: ffff888106ec6dc0 R12: ffffffff811503d0
[ 222.619149][ C0] R13: ffffc90005ef7880 R14: 0000000000000000 R15: ffff88810cb4a1c0
[ 222.619151][ C0] FS: 000055557e095500(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000
[ 222.619155][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 222.619157][ C0] CR2: 00007fc0577956c0 CR3: 0000000118b7e000 CR4: 00000000003506f0
[ 222.619158][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 222.619159][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 222.619160][ C0] Call Trace:
[ 222.619161][ C0]
[ 222.619163][ C0] ? nmi_cpu_backtrace+0x8f/0x110
[ 222.619167][ C0] ? nmi_cpu_backtrace_handler+0xc/0x20
[ 222.619171][ C0] ? nmi_handle+0xb8/0x1a0
[ 222.619175][ C0] ? stack_trace_consume_entry+0x22/0x50
[ 222.619177][ C0] ? default_do_nmi+0x69/0x2f0
[ 222.619180][ C0] ? exc_nmi+0x152/0x190
[ 222.619182][ C0] ? end_repeat_nmi+0xf/0x53
[ 222.619187][ C0] ? __pfx_stack_trace_consume_entry+0x10/0x10
[ 222.619189][ C0] ? alloc_pages_mpol_noprof+0x46/0x150
[ 222.619192][ C0] ? __pud_alloc+0x2f/0x220
[ 222.619196][ C0] ? stack_trace_consume_entry+0x22/0x50
[ 222.619198][ C0] ? stack_trace_consume_entry+0x22/0x50
[ 222.619200][ C0] ? stack_trace_consume_entry+0x22/0x50
[ 222.619202][ C0]
[ 222.619203][ C0]
[ 222.619203][ C0] arch_stack_walk+0x86/0x100
[ 222.619208][ C0] ? __pud_alloc+0x2f/0x220
[ 222.619210][ C0] stack_trace_save+0x4f/0x80
[ 222.619212][ C0] save_stack+0x86/0xb0
[ 222.619216][ C0] ? post_alloc_hook+0xcb/0x180
[ 222.619219][ C0] ? get_page_from_freelist+0x718/0x1380
[ 222.619222][ C0] ? __alloc_pages_noprof+0x1e5/0x350
[ 222.619224][ C0] ? alloc_pages_mpol_noprof+0x47/0x150
[ 222.619226][ C0] ? __pud_alloc+0x2f/0x220
[ 222.619229][ C0] __set_page_owner+0x24/0x180
[ 222.619232][ C0] post_alloc_hook+0xcb/0x180
[ 222.619234][ C0] get_page_from_freelist+0x718/0x1380
[ 222.619237][ C0] ? find_held_lock+0x2b/0x80
[ 222.619241][ C0] ? __alloc_pages_noprof+0x106/0x350
[ 222.619243][ C0] __alloc_pages_noprof+0x1e5/0x350
[ 222.619246][ C0] alloc_pages_mpol_noprof+0x47/0x150
[ 222.619249][ C0] __pud_alloc+0x2f/0x220
[ 222.619251][ C0] copy_page_range+0xce8/0x1f20
[ 222.619254][ C0] ? register_lock_class+0x41/0x430
[ 222.619256][ C0] ? __lock_acquire.constprop.0+0x49/0x570
[ 222.619258][ C0] ? find_held_lock+0x2b/0x80
[ 222.619261][ C0] copy_process+0x18fb/0x2890
[ 222.619266][ C0] kernel_clone+0xa9/0x4e0
[ 222.619268][ C0] __do_sys_clone+0x66/0x90
[ 222.619271][ C0] do_syscall_64+0x6d/0x170
[ 222.619275][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 222.619277][ C0] RIP: 0033:0x7fc056aa4853
[ 222.619279][ C0] Code: 1f 84 00 00 00 00 00 64 48 8b 04 25 10 00 00 00 45 31 c0 31 d2 31 f6 bf 11 00 20 01 4c 8d 90 d0 02 00 00 b8 38 00 00 00 0f 05 <48> 3d 00 f0 ff ff 77 35 89 c2 85 c0 75 2c 64 48 8b 04 25 10 00 00
[ 222.619281][ C0] RSP: 002b:00007ffe61f401c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000038
[ 222.619283][ C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fc056aa4853
[ 222.619284][ C0] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000001200011
[ 222.619285][ C0] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[ 222.619286][ C0] R10: 000055557e0957d0 R11: 0000000000000246 R12: 0000000000000001
[ 222.619288][ C0] R13: 0000000000036580 R14: 000000000003650b R15: 00007ffe61f40350
[ 222.619290][ C0]
[ 222.620110][ T30] Kernel panic - not syncing: hung_task: blocked tasks
[ 223.042304][ T30] Kernel Offset: disabled
[ 223.046595][ T30] Rebooting in 86400 seconds..