Warning: Permanently added '10.128.15.203' (ED25519) to the list of known hosts.
2025/02/14 07:40:21 ignoring optional flag "sandboxArg"="0"
2025/02/14 07:40:21 parsed 1 programs
[   47.431167][   T29] audit: type=1400 audit(1739518821.692:122): avc:  denied  { unlink } for  pid=1879 comm="syz-executor" name="swap-file" dev="sda1" ino=1929 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[   47.520615][ T1879] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   47.998629][   T29] audit: type=1401 audit(1739518822.252:123): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
2025/02/14 07:40:23 executed programs: 0
[   48.969854][   T29] audit: type=1400 audit(1739518823.222:124): avc:  denied  { read } for  pid=2409 comm="syz.2.17" name="msr" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   48.992366][   T29] audit: type=1400 audit(1739518823.222:125): avc:  denied  { open } for  pid=2409 comm="syz.2.17" path="/dev/cpu/0/msr" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[   49.091829][   T29] audit: type=1400 audit(1739518823.282:126): avc:  denied  { execute } for  pid=2409 comm="syz.2.17" path=2F6D656D66643A01FDAE2E2BA68CB63F32193994532C7C783F55655BBDE1210333BC2723FF179B25F35B64202097F5479741C2D8F05571E62BA56C940BB607175CFB0421E4C4B1A21CFF433B94510DB67D9CEC430BCFEBE49A52E52C8203202864656C6574656429 dev="hugetlbfs" ino=3679 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
[   50.583459][ T3194] modprobe (3194) used greatest stack depth: 11512 bytes left
2025/02/14 07:40:28 executed programs: 85
2025/02/14 07:40:33 executed programs: 224
2025/02/14 07:40:38 executed programs: 373
2025/02/14 07:40:43 executed programs: 513
2025/02/14 07:40:48 executed programs: 652
2025/02/14 07:40:53 executed programs: 795
2025/02/14 07:40:58 executed programs: 925
2025/02/14 07:41:03 executed programs: 1031
2025/02/14 07:41:08 executed programs: 1224
2025/02/14 07:41:13 executed programs: 1441
2025/02/14 07:41:18 executed programs: 1632
2025/02/14 07:41:23 executed programs: 1828
2025/02/14 07:41:28 executed programs: 2020
2025/02/14 07:41:34 executed programs: 2184
2025/02/14 07:41:39 executed programs: 2338
2025/02/14 07:41:44 executed programs: 2516
2025/02/14 07:41:49 executed programs: 2739
2025/02/14 07:41:54 executed programs: 2940
2025/02/14 07:41:59 executed programs: 3152
2025/02/14 07:42:04 executed programs: 3350
2025/02/14 07:42:09 executed programs: 3539
2025/02/14 07:42:14 executed programs: 3731
2025/02/14 07:42:19 executed programs: 3898
2025/02/14 07:42:24 executed programs: 4157
2025/02/14 07:42:29 executed programs: 4417
2025/02/14 07:42:34 executed programs: 4630
2025/02/14 07:42:39 executed programs: 4860
2025/02/14 07:42:44 executed programs: 5103
2025/02/14 07:42:49 executed programs: 5355
2025/02/14 07:42:54 executed programs: 5613
2025/02/14 07:42:59 executed programs: 5866
[  210.330899][   T30] INFO: task syz.2.312:5633 blocked for more than 143 seconds.
[  210.338544][   T30]       Not tainted 6.14.0-rc2-syzkaller #0
[  210.344465][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  210.353168][   T30] task:syz.2.312       state:D stack:13992 pid:5633  tgid:5633  ppid:1901   task_flags:0x400040 flags:0x00000004
[  210.365203][   T30] Call Trace:
[  210.368454][   T30]  <TASK>
[  210.371395][   T30]  __schedule+0x525/0xb40
[  210.375708][   T30]  schedule+0x25/0x110
[  210.379749][   T30]  io_schedule+0x41/0x60
[  210.384012][   T30]  folio_wait_bit_common+0x136/0x380
[  210.389260][   T30]  ? __pfx_wake_page_function+0x10/0x10
[  210.394835][   T30]  __filemap_get_folio+0x1be/0x340
[  210.400015][   T30]  hugetlb_fault+0x7e0/0xc10
[  210.404615][   T30]  handle_mm_fault+0x351/0x360
[  210.409382][   T30]  exc_page_fault+0x256/0x6e0
[  210.414054][   T30]  asm_exc_page_fault+0x26/0x30
[  210.418970][   T30] RIP: 0033:0x7ff30d9b7208
[  210.423407][   T30] RSP: 002b:00007ffe455131e8 EFLAGS: 00010246
[  210.429440][   T30] RAX: 0000000020000640 RBX: 0000000000000004 RCX: 006b6e696c766564
[  210.437389][   T30] RDX: 0000000000000008 RSI: 006b6e696c766564 RDI: 0000000020000640
[  210.445333][   T30] RBP: 00007ff30dba7a80 R08: 00007ff30d870000 R09: 0000000000000001
[  210.453288][   T30] R10: 0000000000000001 R11: 0000000000000009 R12: 000000000000f242
[  210.461232][   T30] R13: 00007ffe455132f0 R14: 0000000000000032 R15: fffffffffffffffe
[  210.469171][   T30]  </TASK>
[  210.474014][   T30] INFO: task syz.2.312:5634 blocked for more than 143 seconds.
[  210.481570][   T30]       Not tainted 6.14.0-rc2-syzkaller #0
[  210.487424][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  210.496070][   T30] task:syz.2.312       state:D stack:14080 pid:5634  tgid:5633  ppid:1901   task_flags:0x400140 flags:0x00004004
[  210.507935][   T30] Call Trace:
[  210.511195][   T30]  <TASK>
[  210.514099][   T30]  __schedule+0x525/0xb40
[  210.518394][   T30]  schedule+0x25/0x110
[  210.522434][   T30]  schedule_preempt_disabled+0x13/0x30
[  210.527855][   T30]  __mutex_lock+0x5e3/0xa90
[  210.532329][   T30]  ? hugetlb_wp+0x85a/0xcf0
[  210.536797][   T30]  ? hugetlb_wp+0x85a/0xcf0
[  210.541277][   T30]  hugetlb_wp+0x85a/0xcf0
[  210.545574][   T30]  hugetlb_fault+0xa98/0xc10
[  210.550125][   T30]  handle_mm_fault+0x351/0x360
[  210.554862][   T30]  exc_page_fault+0x161/0x6e0
[  210.559502][   T30]  asm_exc_page_fault+0x26/0x30
[  210.564324][   T30] RIP: 0010:rep_movs_alternative+0x33/0x70
2025/02/14 07:43:04 executed programs: 6120
[  210.570096][   T30] Code: 40 83 f9 08 73 21 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 c3 cc cc cc cc 66 0f 1f 84 00 00 00 00 00 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 df 83 f9 08 73 e8 eb
[  210.589726][   T30] RSP: 0018:ffffc90002e9fde0 EFLAGS: 00050246
[  210.595767][   T30] RAX: 0000000000000000 RBX: 0000000000000008 RCX: 0000000000000008
[  210.603715][   T30] RDX: 0000000020027ed0 RSI: ffffc90002e9fe10 RDI: 0000000020027ec8
[  210.611669][   T30] RBP: 0000000020027ec8 R08: 0000000000080000 R09: 0000000000000000
[  210.619605][   T30] R10: 0000000000000001 R11: 0000000000000000 R12: ffffc90002e9fe10
[  210.627558][   T30] R13: 0000000000018ff8 R14: 0000000020019680 R15: 0000000000000000
[  210.635499][   T30]  _copy_to_user+0x56/0x70
[  210.639883][   T30]  msr_read+0x68/0xe0
[  210.643845][   T30]  vfs_read+0xe0/0x380
[  210.647879][   T30]  ? fdget_pos+0x166/0x1b0
[  210.652271][   T30]  ksys_read+0x6f/0xf0
[  210.656303][   T30]  do_syscall_64+0x6d/0x170
[  210.660769][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.666645][   T30] RIP: 0033:0x7ff30d9edff9
[  210.671047][   T30] RSP: 002b:00007ff30d46f038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[  210.679426][   T30] RAX: ffffffffffffffda RBX: 00007ff30dba5f80 RCX: 00007ff30d9edff9
[  210.687376][   T30] RDX: 0000000000018ff8 RSI: 0000000020019680 RDI: 0000000000000003
[  210.695320][   T30] RBP: 00007ff30da60296 R08: 0000000000000000 R09: 0000000000000000
[  210.703262][   T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[  210.711208][   T30] R13: 0000000000000000 R14: 00007ff30dba5f80 R15: 00007ffe45513088
[  210.719148][   T30]  </TASK>
[  210.729052][   T30] INFO: task syz.1.349:5807 blocked for more than 143 seconds.
[  210.736597][   T30]       Not tainted 6.14.0-rc2-syzkaller #0
[  210.742476][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  210.751116][   T30] task:syz.1.349       state:D stack:13376 pid:5807  tgid:5807  ppid:2412   task_flags:0x400040 flags:0x00000004
[  210.763072][   T30] Call Trace:
[  210.766324][   T30]  <TASK>
[  210.769226][   T30]  __schedule+0x525/0xb40
[  210.773702][   T30]  schedule+0x25/0x110
[  210.777761][   T30]  schedule_preempt_disabled+0x13/0x30
[  210.783187][   T30]  __mutex_lock+0x5e3/0xa90
[  210.787652][   T30]  ? do_wp_page+0x72d/0x13c0
[  210.792214][   T30]  ? hugetlb_fault+0xc2/0xc10
[  210.796856][   T30]  ? hugetlb_fault+0xc2/0xc10
[  210.801500][   T30]  hugetlb_fault+0xc2/0xc10
[  210.805966][   T30]  handle_mm_fault+0x351/0x360
[  210.810700][   T30]  exc_page_fault+0x256/0x6e0
[  210.815355][   T30]  asm_exc_page_fault+0x26/0x30
[  210.820169][   T30] RIP: 0033:0x7faf843c7208
[  210.824556][   T30] RSP: 002b:00007ffc22d85698 EFLAGS: 00010246
[  210.830584][   T30] RAX: 0000000020000640 RBX: 0000000000000004 RCX: 006b6e696c766564
[  210.838534][   T30] RDX: 0000000000000008 RSI: 006b6e696c766564 RDI: 0000000020000640
[  210.846477][   T30] RBP: 00007faf845b7a80 R08: 00007faf8427a000 R09: 0000000000000001
[  210.854427][   T30] R10: 0000000000000001 R11: 0000000000000009 R12: 000000000000f7cb
[  210.862375][   T30] R13: 00007ffc22d857a0 R14: 0000000000000032 R15: fffffffffffffffe
[  210.870315][   T30]  </TASK>
[  210.877771][   T30] INFO: task syz.1.349:5808 blocked for more than 143 seconds.
[  210.885306][   T30]       Not tainted 6.14.0-rc2-syzkaller #0
[  210.891202][   T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  210.899924][   T30] task:syz.1.349       state:D stack:13520 pid:5808  tgid:5807  ppid:2412   task_flags:0x400140 flags:0x00000004
[  210.911830][   T30] Call Trace:
[  210.915078][   T30]  <TASK>
[  210.917987][   T30]  __schedule+0x525/0xb40
[  210.922316][   T30]  schedule+0x25/0x110
[  210.926388][   T30]  schedule_preempt_disabled+0x13/0x30
[  210.931934][   T30]  __mutex_lock+0x5e3/0xa90
[  210.936407][   T30]  ? hugetlbfs_fallocate+0x205/0x680
[  210.941701][   T30]  ? hugetlbfs_fallocate+0x205/0x680
[  210.946948][   T30]  hugetlbfs_fallocate+0x205/0x680
[  210.952047][   T30]  vfs_fallocate+0x121/0x3b0
[  210.956601][   T30]  __x64_sys_fallocate+0x3e/0x80
[  210.961513][   T30]  do_syscall_64+0x6d/0x170
[  210.965990][   T30]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[  210.971916][   T30] RIP: 0033:0x7faf843fdff9
[  210.976296][   T30] RSP: 002b:00007faf83e79038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[  210.984688][   T30] RAX: ffffffffffffffda RBX: 00007faf845b5f80 RCX: 00007faf843fdff9
[  210.992640][   T30] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[  211.000577][   T30] RBP: 00007faf84470296 R08: 0000000000000000 R09: 0000000000000000
[  211.008524][   T30] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000000
[  211.016470][   T30] R13: 0000000000000000 R14: 00007faf845b5f80 R15: 00007ffc22d85538
[  211.024423][   T30]  </TASK>
[  211.027443][   T30] 
[  211.027443][   T30] Showing all locks held in the system:
[  211.035140][   T30] 1 lock held by khungtaskd/30:
[  211.039952][   T30]  #0: ffffffff8277c700 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x36/0x120
[  211.049861][   T30] 2 locks held by kworker/u8:5/306:
[  211.055032][   T30] 2 locks held by getty/839:
[  211.059580][   T30]  #0: ffff888100a860a0 (&tty->ldisc_sem){....}-{0:0}, at: tty_ldisc_ref_wait+0x23/0x60
[  211.069287][   T30]  #1: ffffc90001cb72f0 (&ldata->atomic_read_lock){....}-{3:3}, at: n_tty_read+0x54b/0x6a0
[  211.079250][   T30] 3 locks held by syz.2.312/5633:
[  211.084245][   T30]  #0: ffff88810e3dee18 (&vma->vm_lock->lock){....}-{3:3}, at: lock_vma_under_rcu+0x86/0x1d0
[  211.094396][   T30]  #1: ffff888101ac44e8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xc2/0xc10
[  211.104974][   T30]  #2: ffff888101f2dee8 (&resv_map->rw_sema){....}-{3:3}, at: hugetlb_fault+0xca/0xc10
[  211.114580][   T30] 2 locks held by syz.2.312/5634:
[  211.119568][   T30]  #0: ffff88810eede7a0 (&mm->mmap_lock){....}-{3:3}, at: lock_mm_and_find_vma+0x26/0x270
[  211.129439][   T30]  #1: ffff888101ac44e8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_wp+0x85a/0xcf0
[  211.139832][   T30] 2 locks held by syz.1.349/5807:
[  211.144829][   T30]  #0: ffff88810ebb1368 (&vma->vm_lock->lock){....}-{3:3}, at: lock_vma_under_rcu+0x86/0x1d0
[  211.154983][   T30]  #1: ffff888101ac44e8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xc2/0xc10
[  211.165550][   T30] 3 locks held by syz.1.349/5808:
[  211.170534][   T30]  #0: ffff8881026b23f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[  211.180145][   T30]  #1: ffff888102ad32c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[  211.191079][   T30]  #2: ffff888101ac44e8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[  211.202249][   T30] 3 locks held by syz.3.719/8161:
[  211.207227][   T30]  #0: ffff88810231deb0 (&vma->vm_lock->lock){....}-{3:3}, at: lock_vma_under_rcu+0x86/0x1d0
[  211.217352][   T30]  #1: ffff888101ac4188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xc2/0xc10
[  211.227939][   T30]  #2: ffff888118999ee8 (&resv_map->rw_sema){....}-{3:3}, at: hugetlb_fault+0xca/0xc10
[  211.237548][   T30] 2 locks held by syz.3.719/8162:
[  211.242547][   T30]  #0: ffff88810eed9460 (&mm->mmap_lock){....}-{3:3}, at: lock_mm_and_find_vma+0x26/0x270
[  211.252428][   T30]  #1: ffff888101ac4188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_wp+0x85a/0xcf0
[  211.262812][   T30] 2 locks held by syz.4.747/8359:
[  211.267798][   T30]  #0: ffff888101b78bb8 (&vma->vm_lock->lock){....}-{3:3}, at: lock_vma_under_rcu+0x86/0x1d0
[  211.277930][   T30]  #1: ffff888101ac4188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xc2/0xc10
[  211.288497][   T30] 3 locks held by syz.4.747/8360:
[  211.293607][   T30]  #0: ffff8881026b23f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[  211.303278][   T30]  #1: ffff888102ad1c48 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[  211.314206][   T30]  #2: ffff888101ac4188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[  211.325384][   T30] 2 locks held by syz.0.750/8385:
[  211.330369][   T30]  #0: ffff88810f35ef48 (&vma->vm_lock->lock){....}-{3:3}, at: lock_vma_under_rcu+0x86/0x1d0
[  211.340506][   T30]  #1: ffff888101ac4188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xc2/0xc10
[  211.351070][   T30] 3 locks held by syz.0.750/8386:
[  211.356056][   T30]  #0: ffff8881026b23f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[  211.365673][   T30]  #1: ffff888102ad3748 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[  211.376599][   T30]  #2: ffff888101ac4188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[  211.387779][   T30] 3 locks held by syz.2.751/8403:
[  211.392777][   T30]  #0: ffff8881026b23f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[  211.402397][   T30]  #1: ffff888102ad0ec8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[  211.413314][   T30]  #2: ffff888101ac4188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[  211.424494][   T30] 3 locks held by syz.0.1414/13076:
[  211.429653][   T30]  #0: ffff8881026b23f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[  211.439286][   T30]  #1: ffff88810db96548 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[  211.450199][   T30]  #2: ffff888101ac4188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[  211.461398][   T30] 3 locks held by syz.4.1965/15825:
[  211.466561][   T30]  #0: ffff8881026b23f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[  211.476177][   T30]  #1: ffff88810db9ca48 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[  211.487099][   T30]  #2: ffff888101ac44e8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[  211.498303][   T30] 3 locks held by syz.2.1968/15830:
[  211.503472][   T30]  #0: ffff8881026b23f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[  211.513089][   T30]  #1: ffff88810db9d348 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[  211.524029][   T30]  #2: ffff888101ac4188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[  211.535210][   T30] 3 locks held by syz.0.1802/15857:
[  211.540378][   T30]  #0: ffff8881026b23f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[  211.549995][   T30]  #1: ffff88810db9e548 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[  211.560935][   T30]  #2: ffff888101ac4188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[  211.572104][   T30] 3 locks held by syz.1.3377/23948:
[  211.577256][   T30]  #0: ffff8881026b23f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[  211.586864][   T30]  #1: ffff88810cb91c48 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[  211.597796][   T30]  #2: ffff888101ac4188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[  211.608971][   T30] 3 locks held by syz.2.3378/23958:
[  211.614181][   T30]  #0: ffff8881026b23f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[  211.623798][   T30]  #1: ffff88810cb92548 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[  211.634717][   T30]  #2: ffff888101ac44e8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[  211.645888][   T30] 2 locks held by syz.0.3392/24019:
[  211.651065][   T30]  #0: ffff88810ff8de60 (&mm->mmap_lock){....}-{3:3}, at: lock_mm_and_find_vma+0x98/0x270
[  211.660935][   T30]  #1: ffff888101ac4188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xc2/0xc10
[  211.671498][   T30] 3 locks held by syz.0.3392/24032:
[  211.676657][   T30]  #0: ffff8881026b23f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[  211.686277][   T30]  #1: ffff88810cb93748 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[  211.697195][   T30]  #2: ffff888101ac4188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[  211.708369][   T30] 3 locks held by syz.1.4315/28813:
[  211.713531][   T30]  #0: ffff8881026b23f8 (sb_writers#14){....}-{0:0}, at: __x64_sys_fallocate+0x3e/0x80
[  211.723136][   T30]  #1: ffff88810bb7e9c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xb9/0x680
[  211.734056][   T30]  #2: ffff888101ac4188 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x205/0x680
[  211.745233][   T30] 
[  211.747526][   T30] =============================================
[  211.747526][   T30] 
[  211.755926][   T30] NMI backtrace for cpu 1
[  211.755932][   T30] CPU: 1 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.14.0-rc2-syzkaller #0
[  211.755936][   T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  211.755938][   T30] Call Trace:
[  211.755939][   T30]  <TASK>
[  211.755941][   T30]  dump_stack_lvl+0x5a/0x90
[  211.755947][   T30]  nmi_cpu_backtrace+0xd4/0x110
[  211.755952][   T30]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  211.755957][   T30]  nmi_trigger_cpumask_backtrace+0xd5/0x140
[  211.755960][   T30]  watchdog+0x645/0x680
[  211.755966][   T30]  ? watchdog+0x1e8/0x680
[  211.755969][   T30]  ? __pfx_watchdog+0x10/0x10
[  211.755972][   T30]  kthread+0xf7/0x200
[  211.755976][   T30]  ? __pfx_kthread+0x10/0x10
[  211.755978][   T30]  ret_from_fork+0x2c/0x50
[  211.755983][   T30]  ? __pfx_kthread+0x10/0x10
[  211.755985][   T30]  ret_from_fork_asm+0x1a/0x30
[  211.755991][   T30]  </TASK>
[  211.755992][   T30] Sending NMI from CPU 1 to CPUs 0:
[  211.849768][    C0] NMI backtrace for cpu 0
[  211.849771][    C0] CPU: 0 UID: 0 PID: 13 Comm: kworker/u8:1 Not tainted 6.14.0-rc2-syzkaller #0
[  211.849774][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 12/27/2024
[  211.849776][    C0] Workqueue: events_unbound toggle_allocation_gate
[  211.849784][    C0] RIP: 0010:default_send_IPI_single_phys+0xb8/0xd0
[  211.849789][    C0] Code: 58 00 00 f6 c4 10 75 da c1 e5 18 89 2c 25 10 c3 5f ff be 00 04 00 00 eb a4 e8 44 34 c3 00 eb ab c1 e5 18 89 2c 25 10 c3 5f ff <eb> 91 89 e8 c1 e0 18 89 04 25 10 c3 5f ff eb d8 0f 1f 84 00 00 00
[  211.849791][    C0] RSP: 0018:ffffc90000073c88 EFLAGS: 00000006
[  211.849794][    C0] RAX: 00000000000000fb RBX: 0000000000000282 RCX: 0000000000000002
[  211.849795][    C0] RDX: ffff888237d00000 RSI: 00000000000000fb RDI: 0000000000000001
[  211.849797][    C0] RBP: 0000000001000000 R08: ffff888237d34740 R09: 0000000000014235
[  211.849798][    C0] R10: 0000000000000001 R11: ffffffff8303be0a R12: 000000000002dc0c
[  211.849799][    C0] R13: ffff888237c2ffc0 R14: 0000000000000001 R15: 0000000000000001
[  211.849801][    C0] FS:  0000000000000000(0000) GS:ffff888237c00000(0000) knlGS:0000000000000000
[  211.849805][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  211.849806][    C0] CR2: 0000000020032000 CR3: 000000000264a000 CR4: 00000000003506f0
[  211.849807][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  211.849808][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  211.849809][    C0] Call Trace:
[  211.849811][    C0]  <NMI>
[  211.849812][    C0]  ? nmi_cpu_backtrace+0x8f/0x110
[  211.849817][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x20
[  211.849820][    C0]  ? nmi_handle+0xb8/0x1a0
[  211.849825][    C0]  ? default_send_IPI_single_phys+0xb8/0xd0
[  211.849827][    C0]  ? default_do_nmi+0x69/0x2f0
[  211.849830][    C0]  ? exc_nmi+0x152/0x190
[  211.849832][    C0]  ? end_repeat_nmi+0xf/0x53
[  211.849837][    C0]  ? default_send_IPI_single_phys+0xb8/0xd0
[  211.849839][    C0]  ? default_send_IPI_single_phys+0xb8/0xd0
[  211.849841][    C0]  ? default_send_IPI_single_phys+0xb8/0xd0
[  211.849843][    C0]  </NMI>
[  211.849844][    C0]  <TASK>
[  211.849845][    C0]  smp_call_function_many_cond+0x590/0x620
[  211.849849][    C0]  ? __pfx_do_sync_core+0x10/0x10
[  211.849852][    C0]  ? __pfx_do_sync_core+0x10/0x10
[  211.849854][    C0]  on_each_cpu_cond_mask+0x3b/0x70
[  211.849856][    C0]  ? __kmalloc_node_track_caller_noprof+0xd8/0x560
[  211.849860][    C0]  ? __kmalloc_node_track_caller_noprof+0xd9/0x560
[  211.849862][    C0]  text_poke_bp_batch+0x2ec/0x310
[  211.849865][    C0]  text_poke_finish+0x1a/0x30
[  211.849867][    C0]  arch_jump_label_transform_apply+0x17/0x30
[  211.849870][    C0]  static_key_disable_cpuslocked+0x4f/0x60
[  211.849873][    C0]  static_key_disable+0x15/0x20
[  211.849875][    C0]  toggle_allocation_gate+0x75/0x130
[  211.849878][    C0]  ? __pfx_autoremove_wake_function+0x10/0x10
[  211.849880][    C0]  process_one_work+0x22f/0x6b0
[  211.849884][    C0]  worker_thread+0x1bc/0x350
[  211.849887][    C0]  ? __pfx_worker_thread+0x10/0x10
[  211.849889][    C0]  kthread+0xf7/0x200
[  211.849892][    C0]  ? __pfx_kthread+0x10/0x10
[  211.849894][    C0]  ret_from_fork+0x2c/0x50
[  211.849897][    C0]  ? __pfx_kthread+0x10/0x10
[  211.849899][    C0]  ret_from_fork_asm+0x1a/0x30
[  211.849903][    C0]  </TASK>
[  211.850764][   T30] Kernel panic - not syncing: hung_task: blocked tasks
[  212.172273][   T30] Kernel Offset: disabled
[  212.176560][   T30] Rebooting in 86400 seconds..