./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor75515104 <...> Warning: Permanently added '10.128.10.9' (ED25519) to the list of known hosts. execve("./syz-executor75515104", ["./syz-executor75515104"], 0x7ffee42d2a00 /* 10 vars */) = 0 brk(NULL) = 0x555555d2a000 brk(0x555555d2ad00) = 0x555555d2ad00 arch_prctl(ARCH_SET_FS, 0x555555d2a380) = 0 set_tid_address(0x555555d2a650) = 5049 set_robust_list(0x555555d2a660, 24) = 0 rseq(0x555555d2aca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor75515104", 4096) = 26 getrandom("\x7a\x5d\x01\x11\xa1\x1b\xc3\x12", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555555d2ad00 brk(0x555555d4bd00) = 0x555555d4bd00 brk(0x555555d4c000) = 0x555555d4c000 mprotect(0x7f9a72f46000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555d2a650) = 5051 ./strace-static-x86_64: Process 5051 attached [pid 5051] set_robust_list(0x555555d2a660, 24) = 0 [pid 5051] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5051] setpgid(0, 0) = 0 [pid 5051] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [ 90.328167][ T28] audit: type=1400 audit(1705415689.496:86): avc: denied { execmem } for pid=5049 comm="syz-executor755" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1 [ 90.348517][ T28] audit: type=1400 audit(1705415689.496:87): avc: denied { read write } for pid=5049 comm="syz-executor755" name="loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [pid 5051] write(3, "1000", 4) = 4 [pid 5051] close(3) = 0 [pid 5051] memfd_create("syzkaller", 0) = 3 [pid 5051] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f9a6aa00000 [ 90.374077][ T28] audit: type=1400 audit(1705415689.496:88): avc: denied { open } for pid=5049 comm="syz-executor755" path="/dev/loop0" dev="devtmpfs" ino=648 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [ 90.399719][ T28] audit: type=1400 audit(1705415689.496:89): avc: denied { ioctl } for pid=5049 comm="syz-executor755" path="/dev/loop0" dev="devtmpfs" ino=648 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1 [pid 5051] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 32768) = 32768 [pid 5051] munmap(0x7f9a6aa00000, 138412032) = 0 [pid 5051] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5051] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5051] close(3) = 0 [pid 5051] close(4) = 0 [pid 5051] mkdir("./bus", 0777) = 0 [ 90.400896][ T5051] loop0: detected capacity change from 0 to 64 [pid 5051] mount("/dev/loop0", "./bus", "hfs", 0, "") = 0 [pid 5051] openat(AT_FDCWD, "./bus", O_RDONLY|O_DIRECTORY) = 3 [pid 5051] chdir("./bus") = 0 [pid 5051] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5051] openat(AT_FDCWD, "cpu.stat", O_RDWR|O_CREAT|O_NOCTTY|O_TRUNC|O_APPEND|FASYNC|0x18, 000) = 4 [ 90.462824][ T28] audit: type=1400 audit(1705415689.626:90): avc: denied { mounton } for pid=5051 comm="syz-executor755" path="/root/bus" dev="sda1" ino=1927 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1 [ 90.486104][ T28] audit: type=1400 audit(1705415689.656:91): avc: denied { mount } for pid=5051 comm="syz-executor755" name="/" dev="loop0" ino=2 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:dosfs_t tclass=filesystem permissive=1 [pid 5051] write(4, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 34136651 [pid 5049] kill(-5051, SIGKILL) = 0 [pid 5049] kill(5051, SIGKILL) = 0 [ 95.524556][ T12] kworker/u4:1: attempt to access beyond end of device [ 95.524556][ T12] loop0: rw=1048577, sector=95, nr_sectors = 1 limit=64 [ 95.538269][ T12] Buffer I/O error on dev loop0, logical block 95, lost async page write [ 95.547035][ T12] kworker/u4:1: attempt to access beyond end of device [ 95.547035][ T12] loop0: rw=1048577, sector=96, nr_sectors = 1 limit=64 [ 95.560813][ T12] Buffer I/O error on dev loop0, logical block 96, lost async page write [ 95.569534][ T12] kworker/u4:1: attempt to access beyond end of device [ 95.569534][ T12] loop0: rw=1048577, sector=98, nr_sectors = 1 limit=64 [ 95.583202][ T12] Buffer I/O error on dev loop0, logical block 98, lost async page write [ 95.591679][ T12] kworker/u4:1: attempt to access beyond end of device [ 95.591679][ T12] loop0: rw=1048577, sector=100, nr_sectors = 1 limit=64 [ 95.605464][ T12] Buffer I/O error on dev loop0, logical block 100, lost async page write [ 95.614016][ T12] kworker/u4:1: attempt to access beyond end of device [ 95.614016][ T12] loop0: rw=1048577, sector=101, nr_sectors = 1 limit=64 [ 95.627770][ T12] Buffer I/O error on dev loop0, logical block 101, lost async page write [ 95.636407][ T12] kworker/u4:1: attempt to access beyond end of device [ 95.636407][ T12] loop0: rw=1048577, sector=102, nr_sectors = 1 limit=64 [ 95.650175][ T12] Buffer I/O error on dev loop0, logical block 102, lost async page write [ 95.658796][ T12] kworker/u4:1: attempt to access beyond end of device [ 95.658796][ T12] loop0: rw=1048577, sector=103, nr_sectors = 1 limit=64 [ 95.672580][ T12] Buffer I/O error on dev loop0, logical block 103, lost async page write [ 95.681185][ T12] kworker/u4:1: attempt to access beyond end of device [ 95.681185][ T12] loop0: rw=1048577, sector=104, nr_sectors = 1 limit=64 [ 95.694979][ T12] Buffer I/O error on dev loop0, logical block 104, lost async page write [ 95.707437][ T12] kworker/u4:1: attempt to access beyond end of device [ 95.707437][ T12] loop0: rw=1048577, sector=105, nr_sectors = 4064 limit=64 [pid 5049] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5049] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5049] getdents64(3, 0x555555d2b6f0 /* 2 entries */, 32768) = 48 [pid 5049] getdents64(3, 0x555555d2b6f0 /* 0 entries */, 32768) = 0 [pid 5049] close(3) = 0 [ 97.285040][ T45] cfg80211: failed to load regulatory.db [ 286.724132][ T29] INFO: task kworker/u4:1:12 blocked for more than 143 seconds. [ 286.731798][ T29] Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0 [ 286.739044][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.747752][ T29] task:kworker/u4:1 state:D stack:23968 pid:12 tgid:12 ppid:2 flags:0x00004000 [ 286.758001][ T29] Workqueue: writeback wb_workfn (flush-7:0) [ 286.764108][ T29] Call Trace: [ 286.767398][ T29] [ 286.770329][ T29] __schedule+0xf12/0x5c00 [ 286.774815][ T29] ? blk_mq_try_issue_list_directly+0x600/0x600 [ 286.781101][ T29] ? kasan_save_stack+0x33/0x50 [ 286.786006][ T29] ? kasan_save_track+0x14/0x30 [ 286.790898][ T29] ? io_schedule_timeout+0x150/0x150 [ 286.796244][ T29] ? lock_release+0x4bf/0x690 [ 286.800974][ T29] ? rcu_is_watching+0x12/0xb0 [ 286.805772][ T29] ? schedule+0x1fc/0x270 [ 286.810125][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 286.815563][ T29] ? __mutex_lock+0x5b4/0x9d0 [ 286.820276][ T29] ? __mutex_trylock_common+0x78/0x250 [ 286.825772][ T29] ? mutex_is_locked+0x40/0x40 [ 286.830560][ T29] ? spin_bug+0x1d0/0x1d0 [ 286.834954][ T29] schedule+0xe9/0x270 [ 286.839053][ T29] schedule_preempt_disabled+0x13/0x20 [ 286.844565][ T29] __mutex_lock+0x5b9/0x9d0 [ 286.849112][ T29] ? hfs_find_init+0x17f/0x220 [ 286.853876][ T29] ? mutex_trylock+0x130/0x130 [ 286.858690][ T29] ? rcu_is_watching+0x12/0xb0 [ 286.863479][ T29] ? trace_kmalloc+0x26/0xa0 [ 286.868122][ T29] ? __kmalloc+0x218/0x440 [ 286.872572][ T29] ? hfs_find_init+0x17f/0x220 [ 286.877428][ T29] hfs_find_init+0x17f/0x220 [ 286.882057][ T29] hfs_ext_write_extent+0x18e/0x1f0 [ 286.887368][ T29] ? hfs_ext_keycmp+0x310/0x310 [ 286.892267][ T29] ? mpage_writepages+0x147/0x1a0 [ 286.897387][ T29] ? hfs_extend_file+0xb10/0xb10 [ 286.902362][ T29] ? blkdev_writepages+0xd2/0x110 [ 286.907472][ T29] ? blkdev_readahead+0x20/0x20 [ 286.912385][ T29] hfs_write_inode+0xc4/0x9f0 [ 286.917142][ T29] ? hfs_inode_write_fork+0x1c0/0x1c0 [ 286.922601][ T29] ? rcu_is_watching+0x12/0xb0 [ 286.927594][ T29] ? spin_bug+0x1d0/0x1d0 [ 286.931969][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 286.937414][ T29] __writeback_single_inode+0xa91/0xe90 [ 286.943194][ T29] ? __mark_inode_dirty+0xd60/0xd60 [ 286.948450][ T29] ? _raw_spin_unlock+0x28/0x40 [ 286.953322][ T29] ? wbc_attach_and_unlock_inode+0x561/0x910 [ 286.959360][ T29] writeback_sb_inodes+0x599/0x1080 [ 286.964624][ T29] ? sync_inode_metadata+0xe0/0xe0 [ 286.969750][ T29] ? do_raw_spin_lock+0x12e/0x2b0 [ 286.974836][ T29] ? move_expired_inodes+0x59e/0x850 [ 286.980157][ T29] __writeback_inodes_wb+0xff/0x2d0 [ 286.985410][ T29] ? writeback_sb_inodes+0x1080/0x1080 [ 286.990905][ T29] ? queue_io+0x3ed/0x4e0 [ 286.995305][ T29] wb_writeback+0x7f8/0xaa0 [ 286.999845][ T29] ? __writeback_inodes_wb+0x2d0/0x2d0 [ 287.005361][ T29] ? get_nr_dirty_inodes+0x176/0x1e0 [ 287.010679][ T29] wb_workfn+0x87c/0xfe0 [ 287.014995][ T29] ? inode_wait_for_writeback+0x30/0x30 [ 287.020577][ T29] ? rcu_is_watching+0x12/0xb0 [ 287.025379][ T29] ? lock_acquire+0x464/0x520 [ 287.030093][ T29] ? lock_sync+0x190/0x190 [ 287.034563][ T29] ? lock_sync+0x190/0x190 [ 287.039017][ T29] ? spin_bug+0x1d0/0x1d0 [ 287.043364][ T29] process_one_work+0x886/0x15d0 [ 287.048397][ T29] ? lock_sync+0x190/0x190 [ 287.052844][ T29] ? workqueue_congested+0x300/0x300 [ 287.058191][ T29] ? assign_work+0x1a0/0x250 [ 287.062834][ T29] worker_thread+0x8b9/0x1290 [ 287.067605][ T29] ? process_one_work+0x15d0/0x15d0 [ 287.072848][ T29] kthread+0x2c6/0x3a0 [ 287.076978][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.082667][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.088380][ T29] ret_from_fork+0x45/0x80 [ 287.092830][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.098512][ T29] ret_from_fork_asm+0x11/0x20 [ 287.103330][ T29] [ 287.106464][ T29] INFO: task syz-executor755:5051 blocked for more than 143 seconds. [ 287.114586][ T29] Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0 [ 287.121812][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 287.130512][ T29] task:syz-executor755 state:D stack:26976 pid:5051 tgid:5051 ppid:5049 flags:0x00004006 [ 287.140766][ T29] Call Trace: [ 287.144050][ T29] [ 287.147028][ T29] __schedule+0xf12/0x5c00 [ 287.151481][ T29] ? io_schedule_timeout+0x150/0x150 [ 287.156817][ T29] ? lock_release+0x4bf/0x690 [ 287.161526][ T29] ? schedule+0x1fc/0x270 [ 287.165887][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.171285][ T29] ? __mutex_lock+0x5b4/0x9d0 [ 287.176010][ T29] ? __mutex_trylock_common+0x78/0x250 [ 287.181513][ T29] ? mutex_is_locked+0x40/0x40 [ 287.186305][ T29] ? spin_bug+0x1d0/0x1d0 [ 287.190670][ T29] schedule+0xe9/0x270 [ 287.194797][ T29] schedule_preempt_disabled+0x13/0x20 [ 287.200401][ T29] __mutex_lock+0x5b9/0x9d0 [ 287.204971][ T29] ? hfs_find_init+0x17f/0x220 [ 287.209764][ T29] ? mutex_trylock+0x130/0x130 [ 287.214626][ T29] ? rcu_is_watching+0x12/0xb0 [ 287.219418][ T29] ? trace_kmalloc+0x26/0xa0 [ 287.224018][ T29] ? __kmalloc+0x218/0x440 [ 287.228485][ T29] ? hfs_find_init+0x17f/0x220 [ 287.233289][ T29] hfs_find_init+0x17f/0x220 [ 287.237928][ T29] hfs_ext_read_extent+0x19c/0x9d0 [ 287.243074][ T29] ? mutex_trylock+0x130/0x130 [ 287.247883][ T29] ? hfs_free_extents+0x2f0/0x2f0 [ 287.252940][ T29] ? do_raw_spin_unlock+0x173/0x230 [ 287.258203][ T29] hfs_extend_file+0x4e0/0xb10 [ 287.263016][ T29] ? hfs_free_fork+0x900/0x900 [ 287.267839][ T29] ? mutex_trylock+0x130/0x130 [ 287.272647][ T29] hfs_bmap_reserve+0x29c/0x370 [ 287.277566][ T29] __hfs_ext_write_extent+0x3cb/0x520 [ 287.282985][ T29] ? hfs_find_init+0x17f/0x220 [ 287.287804][ T29] hfs_ext_read_extent+0x805/0x9d0 [ 287.292950][ T29] ? hfs_free_extents+0x2f0/0x2f0 [ 287.298031][ T29] ? clean_bdev_aliases+0x51a/0x620 [ 287.303360][ T29] hfs_extend_file+0x4e0/0xb10 [ 287.308174][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.313592][ T29] ? hfs_free_fork+0x900/0x900 [ 287.318417][ T29] hfs_get_block+0x17f/0x820 [ 287.323048][ T29] ? hfs_extend_file+0xb10/0xb10 [ 287.328056][ T29] __block_write_begin_int+0x4fb/0x16e0 [ 287.333640][ T29] ? hfs_extend_file+0xb10/0xb10 [ 287.338663][ T29] ? invalidate_bh_lrus_cpu+0x170/0x170 [ 287.344274][ T29] block_write_begin+0xb1/0x490 [ 287.349145][ T29] ? hfs_extend_file+0xb10/0xb10 [ 287.354156][ T29] cont_write_begin+0x530/0x730 [ 287.359222][ T29] ? hfs_extend_file+0xb10/0xb10 [ 287.364214][ T29] ? block_write_begin+0x490/0x490 [ 287.369358][ T29] ? fault_in_readable+0x150/0x200 [ 287.374507][ T29] ? fault_in_subpage_writeable+0x20/0x20 [ 287.380271][ T29] hfs_write_begin+0x87/0x140 [ 287.384990][ T29] ? hfs_extend_file+0xb10/0xb10 [ 287.389950][ T29] generic_perform_write+0x278/0x600 [ 287.395300][ T29] ? folio_add_wait_queue+0x1c0/0x1c0 [ 287.400714][ T29] ? generic_write_checks+0x2b0/0x3f0 [ 287.406131][ T29] __generic_file_write_iter+0x1f9/0x240 [ 287.411848][ T29] generic_file_write_iter+0xe3/0x350 [ 287.417314][ T29] vfs_write+0x64f/0xdf0 [ 287.421601][ T29] ? kernel_write+0x6c0/0x6c0 [ 287.426325][ T29] ? rcu_is_watching+0x12/0xb0 [ 287.431127][ T29] ? reacquire_held_locks+0x4c0/0x4c0 [ 287.436547][ T29] ? __fget_light+0x173/0x200 [ 287.441254][ T29] ksys_write+0x12f/0x250 [ 287.445620][ T29] ? __ia32_sys_read+0xb0/0xb0 [ 287.450413][ T29] ? _raw_spin_unlock_irq+0x2e/0x50 [ 287.455642][ T29] ? ptrace_notify+0xf4/0x130 [ 287.460353][ T29] do_syscall_64+0xd3/0x250 [ 287.464883][ T29] entry_SYSCALL_64_after_hwframe+0x63/0x6b [ 287.470808][ T29] RIP: 0033:0x7f9a72ed2a59 [ 287.475251][ T29] RSP: 002b:00007ffcc7d3ea78 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 287.483679][ T29] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f9a72ed2a59 [ 287.491677][ T29] RDX: 000000000208e24b RSI: 0000000020000180 RDI: 0000000000000004 [ 287.499675][ T29] RBP: 00007f9a72f465f0 R08: 0000555555d2b4c0 R09: 0000555555d2b4c0 [ 287.507674][ T29] R10: 00000000000002ba R11: 0000000000000246 R12: 00007ffcc7d3eaa0 [ 287.515702][ T29] R13: 00007ffcc7d3ecc8 R14: 431bde82d7b634db R15: 00007f9a72f1b03b [ 287.523672][ T29] [ 287.526725][ T29] INFO: lockdep is turned off. [ 287.531495][ T29] NMI backtrace for cpu 1 [ 287.535815][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0 [ 287.545268][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 287.555323][ T29] Call Trace: [ 287.558606][ T29] [ 287.561537][ T29] dump_stack_lvl+0xd9/0x1b0 [ 287.566134][ T29] nmi_cpu_backtrace+0x277/0x390 [ 287.571095][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 287.576370][ T29] nmi_trigger_cpumask_backtrace+0x299/0x300 [ 287.582374][ T29] watchdog+0xf87/0x1210 [ 287.586633][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.592636][ T29] ? __kthread_parkme+0x14b/0x220 [ 287.597674][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.603690][ T29] kthread+0x2c6/0x3a0 [ 287.607773][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.613427][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.619073][ T29] ret_from_fork+0x45/0x80 [ 287.623505][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.629155][ T29] ret_from_fork_asm+0x11/0x20 [ 287.633948][ T29] [ 287.637024][ T29] Sending NMI from CPU 1 to CPUs 0: [ 287.642252][ C0] NMI backtrace for cpu 0 [ 287.642262][ C0] CPU: 0 PID: 11 Comm: kworker/u4:0 Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0 [ 287.642286][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 287.642299][ C0] Workqueue: events_unbound toggle_allocation_gate [ 287.642327][ C0] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x60 [ 287.642357][ C0] Code: c6 71 e0 02 66 0f 1f 44 00 00 f3 0f 1e fa 48 8b be b0 01 00 00 e8 b0 ff ff ff 31 c0 c3 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 0f 1e fa 65 48 8b 14 25 40 c2 03 00 65 8b 05 e4 c8 7c 7e a9 00 [ 287.642378][ C0] RSP: 0018:ffffc900001079a0 EFLAGS: 00000006 [ 287.642393][ C0] RAX: 0000000000000000 RBX: 0000000000000200 RCX: ffffffff812fe3af [ 287.642407][ C0] RDX: ffff888015693b80 RSI: 0000000000000000 RDI: 0000000000000007 [ 287.642421][ C0] RBP: ffffffff81d45d23 R08: 0000000000000007 R09: 0000000000000000 [ 287.642435][ C0] R10: 0000000000000200 R11: 0000000000000000 R12: 0000000000000d27 [ 287.642449][ C0] R13: 0000000000000003 R14: ffffffff8d320100 R15: 0000000000000000 [ 287.642462][ C0] FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 287.642484][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.642499][ C0] CR2: 00007feace266b90 CR3: 000000000cf79000 CR4: 00000000003506f0 [ 287.642513][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.642526][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.642539][ C0] Call Trace: [ 287.642546][ C0] [ 287.642552][ C0] ? show_regs+0x8f/0xa0 [ 287.642579][ C0] ? nmi_cpu_backtrace+0x1d4/0x390 [ 287.642615][ C0] ? nmi_cpu_backtrace_handler+0xc/0x10 [ 287.642650][ C0] ? nmi_handle+0x1a6/0x570 [ 287.642678][ C0] ? kcov_close+0x20/0x20 [ 287.642702][ C0] ? default_do_nmi+0x6a/0x160 [ 287.642729][ C0] ? exc_nmi+0x186/0x200 [ 287.642755][ C0] ? end_repeat_nmi+0xf/0x2a [ 287.642775][ C0] ? kmalloc_node_trace+0xa3/0x380 [ 287.642799][ C0] ? __text_poke+0x5df/0xca0 [ 287.642821][ C0] ? kcov_close+0x20/0x20 [ 287.642846][ C0] ? kcov_close+0x20/0x20 [ 287.642871][ C0] ? kcov_close+0x20/0x20 [ 287.642896][ C0] [ 287.642901][ C0] [ 287.642907][ C0] __text_poke+0x8d2/0xca0 [ 287.642929][ C0] ? setup_data_read+0x280/0x280 [ 287.642953][ C0] ? apply_relocation+0x830/0x830 [ 287.642976][ C0] ? __text_poke+0xca0/0xca0 [ 287.642999][ C0] text_poke_bp_batch+0x3e0/0x750 [ 287.643024][ C0] ? kmalloc_node_trace+0xa3/0x380 [ 287.643048][ C0] ? alternatives_enable_smp+0x400/0x400 [ 287.643072][ C0] ? __jump_label_patch+0x1db/0x400 [ 287.643105][ C0] ? text_poke_queue+0xef/0x180 [ 287.643154][ C0] ? arch_jump_label_transform_queue+0xc0/0x110 [ 287.643211][ C0] text_poke_finish+0x30/0x40 [ 287.643237][ C0] arch_jump_label_transform_apply+0x1c/0x30 [ 287.643275][ C0] jump_label_update+0x1d7/0x400 [ 287.643302][ C0] static_key_disable_cpuslocked+0x154/0x1c0 [ 287.643335][ C0] static_key_disable+0x1a/0x20 [ 287.643360][ C0] toggle_allocation_gate+0x13f/0x250 [ 287.643384][ C0] ? wake_up_kfence_timer+0x30/0x30 [ 287.643408][ C0] ? spin_bug+0x1d0/0x1d0 [ 287.643446][ C0] process_one_work+0x886/0x15d0 [ 287.643480][ C0] ? lock_sync+0x190/0x190 [ 287.643513][ C0] ? workqueue_congested+0x300/0x300 [ 287.643546][ C0] ? assign_work+0x1a0/0x250 [ 287.643574][ C0] worker_thread+0x8b9/0x1290 [ 287.643608][ C0] ? process_one_work+0x15d0/0x15d0 [ 287.643639][ C0] kthread+0x2c6/0x3a0 [ 287.643664][ C0] ? kthread_complete_and_exit+0x40/0x40 [ 287.643692][ C0] ? kthread_complete_and_exit+0x40/0x40 [ 287.643721][ C0] ret_from_fork+0x45/0x80 [ 287.643749][ C0] ? kthread_complete_and_exit+0x40/0x40 [ 287.643777][ C0] ret_from_fork_asm+0x11/0x20 [ 287.643814][ C0] [ 287.643822][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.570 msecs [ 287.644254][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 287.644268][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.7.0-syzkaller-09928-g052d534373b7 #0 [ 287.644301][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 11/17/2023 [ 287.644317][ T29] Call Trace: [ 287.644326][ T29] [ 287.644335][ T29] dump_stack_lvl+0xd9/0x1b0 [ 287.644377][ T29] panic+0x6dc/0x790 [ 287.644411][ T29] ? panic_smp_self_stop+0xa0/0xa0 [ 287.644447][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 287.644492][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0 [ 287.644534][ T29] ? preempt_schedule_thunk+0x1a/0x30 [ 287.644578][ T29] ? watchdog+0xd3e/0x1210 [ 287.644629][ T29] ? watchdog+0xd31/0x1210 [ 287.644665][ T29] watchdog+0xd4f/0x1210 [ 287.644702][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.644743][ T29] ? __kthread_parkme+0x14b/0x220 [ 287.644775][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90 [ 287.644815][ T29] kthread+0x2c6/0x3a0 [ 287.644861][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.644897][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.644934][ T29] ret_from_fork+0x45/0x80 [ 287.644972][ T29] ? kthread_complete_and_exit+0x40/0x40 [ 287.645009][ T29] ret_from_fork_asm+0x11/0x20 [ 287.645055][ T29] [ 287.648763][ T29] Kernel Offset: disabled [ 288.149672][ T29] Rebooting in 86400 seconds..