./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3207273075 <...> Warning: Permanently added '10.128.1.81' (ED25519) to the list of known hosts. execve("./syz-executor3207273075", ["./syz-executor3207273075"], 0x7ffd99dca430 /* 10 vars */) = 0 brk(NULL) = 0x555556352000 brk(0x555556352d00) = 0x555556352d00 arch_prctl(ARCH_SET_FS, 0x555556352380) = 0 set_tid_address(0x555556352650) = 5012 set_robust_list(0x555556352660, 24) = 0 rseq(0x555556352ca0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3207273075", 4096) = 28 getrandom("\xa6\xe5\x41\x7a\x6e\xbb\xaf\x57", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x555556352d00 brk(0x555556373d00) = 0x555556373d00 brk(0x555556374000) = 0x555556374000 mprotect(0x7f16df667000, 16384, PROT_READ) = 0 mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000 mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000 mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556352650) = 5013 ./strace-static-x86_64: Process 5013 attached [pid 5013] set_robust_list(0x555556352660, 24) = 0 [pid 5013] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5013] setpgid(0, 0) = 0 [pid 5013] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5013] write(3, "1000", 4) = 4 [pid 5013] close(3) = 0 [pid 5013] memfd_create("syzkaller", 0) = 3 [pid 5013] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f16d71b0000 [ 52.791874][ T5013] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5013 'syz-executor320' [pid 5013] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 16777216) = 16777216 [pid 5013] munmap(0x7f16d71b0000, 16777216) = 0 [pid 5013] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5013] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5013] close(3) = 0 [pid 5013] mkdir("./file1", 0777) = 0 [pid 5013] mount("/dev/loop0", "./file1", "jfs", 0, ",usrquota,iocharset=cp860,") = 0 [pid 5013] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5013] chdir("./file1") = 0 [pid 5013] ioctl(4, LOOP_CLR_FD) = 0 [pid 5013] close(4) = 0 [ 52.953058][ T5013] loop0: detected capacity change from 0 to 32768 [pid 5013] mkdir("\x13\x13\x77\xc5\xfc\x35\xd4\x14\x54\xd5\xd4\x1d\x29\xad\x1a\x60\x29\x59\x81\x46\xe6\xbe\x16\x6e\x41\xad\x0d\xbd\x40\x54\x03\x3c\x9f\x33\xbb\xda\x82\x24\xa2\xf3\xd7\x72\xe7\x63\x6e\x48\xb3\x3c\xbf\x70\x83\x72\xe8\xf1\xb9\x93\x3e\xc5\x12\x77\x43\xbe\x22\x06\x20\x9e\xf0\x2d\xf9\xcb\xf2\xf6\xe8\x80\xd3\x38\x2f", 0777 [pid 5012] kill(-5013, SIGKILL) = 0 [pid 5012] kill(5013, SIGKILL) = 0 [pid 5012] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5012] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5012] getdents64(3, 0x5555563536f0 /* 2 entries */, 32768) = 48 [pid 5012] getdents64(3, 0x5555563536f0 /* 0 entries */, 32768) = 0 [pid 5012] close(3) = 0 [ 76.612599][ T26] cfg80211: failed to load regulatory.db [ 286.530562][ T28] INFO: task kworker/u4:3:42 blocked for more than 143 seconds. [ 286.538472][ T28] Not tainted 6.5.0-rc7-syzkaller-00104-g4f9e7fabf864 #0 [ 286.547400][ T28] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.556464][ T28] task:kworker/u4:3 state:D stack:22416 pid:42 ppid:2 flags:0x00004000 [ 286.565971][ T28] Workqueue: writeback wb_workfn (flush-7:0) [ 286.572406][ T28] Call Trace: [ 286.575697][ T28] [ 286.578638][ T28] __schedule+0x1873/0x48f0 [ 286.583604][ T28] ? blk_mq_start_stopped_hw_queues+0x1c0/0x1c0 [ 286.589932][ T28] ? release_firmware_map_entry+0x190/0x190 [ 286.596351][ T28] ? __blk_flush_plug+0x46b/0x4c0 [ 286.601773][ T28] ? __mutex_lock_common+0xe2e/0x2530 [ 286.607181][ T28] ? __mutex_trylock_common+0x91/0x2e0 [ 286.613123][ T28] ? kthread_data+0x52/0xc0 [ 286.617665][ T28] ? wq_worker_sleeping+0x63/0x2e0 [ 286.623162][ T28] schedule+0xc3/0x180 [ 286.627253][ T28] schedule_preempt_disabled+0x13/0x20 [ 286.633086][ T28] __mutex_lock_common+0xe33/0x2530 [ 286.638315][ T28] ? jfs_commit_inode+0x246/0x580 [ 286.643697][ T28] ? mutex_lock_io_nested+0x60/0x60 [ 286.648935][ T28] ? _raw_spin_unlock+0x28/0x40 [ 286.654333][ T28] ? txBegin+0x502/0x6e0 [ 286.658627][ T28] mutex_lock_nested+0x1b/0x20 [ 286.663911][ T28] jfs_commit_inode+0x246/0x580 [ 286.668784][ T28] ? jfs_iget+0x3b0/0x3b0 [ 286.673484][ T28] ? do_raw_spin_unlock+0x13b/0x8b0 [ 286.678715][ T28] jfs_write_inode+0x143/0x210 [ 286.683805][ T28] __writeback_single_inode+0x69b/0xfa0 [ 286.689377][ T28] writeback_sb_inodes+0x8e3/0x11d0 [ 286.694947][ T28] ? queue_io+0x570/0x570 [ 286.699318][ T28] ? do_raw_spin_lock+0x14d/0x3a0 [ 286.704686][ T28] __writeback_inodes_wb+0x11b/0x260 [ 286.710082][ T28] wb_writeback+0x461/0xc60 [ 286.714939][ T28] ? rcu_lock_release+0x30/0x30 [ 286.719826][ T28] wb_workfn+0xc6f/0xff0 [ 286.724661][ T28] ? inode_wait_for_writeback+0x290/0x290 [ 286.730433][ T28] ? lockdep_hardirqs_on_prepare+0x43c/0x7a0 [ 286.736817][ T28] ? print_irqtrace_events+0x220/0x220 [ 286.742562][ T28] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 286.748500][ T28] process_one_work+0x92c/0x12c0 [ 286.753815][ T28] ? worker_detach_from_pool+0x290/0x290 [ 286.759477][ T28] ? _raw_spin_lock_irqsave+0x120/0x120 [ 286.765850][ T28] ? wq_worker_running+0xa1/0x200 [ 286.771272][ T28] worker_thread+0xa63/0x1210 [ 286.775981][ T28] ? _raw_spin_unlock+0x40/0x40 [ 286.781408][ T28] kthread+0x2b8/0x350 [ 286.785510][ T28] ? pr_cont_work+0x5e0/0x5e0 [ 286.790215][ T28] ? kthread_blkcg+0xd0/0xd0 [ 286.795476][ T28] ret_from_fork+0x2e/0x60 [ 286.799928][ T28] ? kthread_blkcg+0xd0/0xd0 [ 286.804924][ T28] ret_from_fork_asm+0x11/0x20 [ 286.809754][ T28] [ 286.813260][ T28] [ 286.813260][ T28] Showing all locks held in the system: [ 286.821428][ T28] 1 lock held by rcu_tasks_kthre/13: [ 286.826718][ T28] #0: ffffffff8d3295f0 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xd20 [ 286.837509][ T28] 1 lock held by rcu_tasks_trace/14: [ 286.843011][ T28] #0: ffffffff8d3299b0 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x29/0xd20 [ 286.854250][ T28] 1 lock held by khungtaskd/28: [ 286.859107][ T28] #0: ffffffff8d329420 (rcu_read_lock){....}-{1:2}, at: rcu_lock_acquire+0x0/0x30 [ 286.868746][ T28] 4 locks held by kworker/u4:3/42: [ 286.874155][ T28] #0: ffff888019676938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x7e3/0x12c0 [ 286.885112][ T28] #1: ffffc90000b37d00 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x82b/0x12c0 [ 286.897354][ T28] #2: ffff8880796080e0 (&type->s_umount_key#43){.+.+}-{3:3}, at: trylock_super+0x1f/0xf0 [ 286.907805][ T28] #3: ffff88807866b008 (&jfs_ip->commit_mutex){+.+.}-{3:3}, at: jfs_commit_inode+0x246/0x580 [ 286.918414][ T28] 2 locks held by getty/4764: [ 286.923315][ T28] #0: ffff888029ad2098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 286.933460][ T28] #1: ffffc900015c02f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0x6b1/0x1dc0 [ 286.943807][ T28] 4 locks held by syz-executor320/5013: [ 286.949360][ T28] [ 286.951956][ T28] ============================================= [ 286.951956][ T28] [ 286.961006][ T28] NMI backtrace for cpu 1 [ 286.965339][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.5.0-rc7-syzkaller-00104-g4f9e7fabf864 #0 [ 286.975245][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 286.985311][ T28] Call Trace: [ 286.988594][ T28] [ 286.991531][ T28] dump_stack_lvl+0x1e7/0x2d0 [ 286.996262][ T28] ? nf_tcp_handle_invalid+0x650/0x650 [ 287.001862][ T28] ? panic+0x770/0x770 [ 287.005971][ T28] ? __irq_work_queue_local+0x137/0x3e0 [ 287.011556][ T28] nmi_cpu_backtrace+0x498/0x4d0 [ 287.016869][ T28] ? vprintk_emit+0x10d/0x1f0 [ 287.021564][ T28] ? nmi_trigger_cpumask_backtrace+0x300/0x300 [ 287.027734][ T28] ? _printk+0xd5/0x120 [ 287.031898][ T28] ? panic+0x770/0x770 [ 287.035973][ T28] ? __wake_up_klogd+0xcc/0x100 [ 287.040832][ T28] ? panic+0x770/0x770 [ 287.044913][ T28] ? __rcu_read_unlock+0x96/0x100 [ 287.049943][ T28] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 287.056020][ T28] nmi_trigger_cpumask_backtrace+0x187/0x300 [ 287.062024][ T28] watchdog+0xec2/0xf00 [ 287.066208][ T28] kthread+0x2b8/0x350 [ 287.070277][ T28] ? hungtask_pm_notify+0x90/0x90 [ 287.075302][ T28] ? kthread_blkcg+0xd0/0xd0 [ 287.079899][ T28] ret_from_fork+0x2e/0x60 [ 287.084320][ T28] ? kthread_blkcg+0xd0/0xd0 [ 287.088914][ T28] ret_from_fork_asm+0x11/0x20 [ 287.093697][ T28] [ 287.096862][ T28] Sending NMI from CPU 1 to CPUs 0: [ 287.102126][ C0] NMI backtrace for cpu 0 [ 287.102136][ C0] CPU: 0 PID: 4457 Comm: klogd Not tainted 6.5.0-rc7-syzkaller-00104-g4f9e7fabf864 #0 [ 287.102153][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 287.102162][ C0] RIP: 0010:lockdep_hardirqs_on_prepare+0x1a5/0x7a0 [ 287.102186][ C0] Code: b1 97 7e 85 c0 0f 85 f4 03 00 00 65 48 8b 05 52 e1 98 7e 48 89 44 24 10 48 8d b8 b8 0a 00 00 48 89 f8 48 c1 e8 03 80 3c 10 00 <74> 0f e8 94 ba 79 00 48 ba 00 00 00 00 00 fc ff df 4c 89 7c 24 18 [ 287.102198][ C0] RSP: 0018:ffffc9000310f720 EFLAGS: 00000046 [ 287.102212][ C0] RAX: 1ffff1100fc4b8c7 RBX: 1ffff92000621eec RCX: ffffffff91fac203 [ 287.102225][ C0] RDX: dffffc0000000000 RSI: ffffffff8b58adc0 RDI: ffff88807e25c638 [ 287.102237][ C0] RBP: ffffc9000310f7d8 R08: ffffffff8e9878ef R09: 1ffffffff1d30f1d [ 287.102249][ C0] R10: dffffc0000000000 R11: fffffbfff1d30f1e R12: dffffc0000000000 [ 287.102261][ C0] R13: 1ffff1101730799b R14: ffffc9000310f760 R15: 1ffff92000621ee8 [ 287.102273][ C0] FS: 00007f4bdb63b380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000 [ 287.102288][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.102299][ C0] CR2: 000055b621ad0780 CR3: 000000002c5b3000 CR4: 00000000003506f0 [ 287.102314][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.102323][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.102333][ C0] Call Trace: [ 287.102339][ C0] [ 287.102344][ C0] ? nmi_cpu_backtrace+0x3be/0x4d0 [ 287.102363][ C0] ? read_lock_is_recursive+0x20/0x20 [ 287.102384][ C0] ? nmi_trigger_cpumask_backtrace+0x300/0x300 [ 287.102403][ C0] ? unknown_nmi_error+0xc0/0xc0 [ 287.102430][ C0] ? nmi_cpu_backtrace_handler+0xc/0x10 [ 287.102451][ C0] ? nmi_handle+0xf7/0x370 [ 287.102472][ C0] ? lockdep_hardirqs_on_prepare+0x1a5/0x7a0 [ 287.102491][ C0] ? default_do_nmi+0x62/0x150 [ 287.102510][ C0] ? exc_nmi+0x11e/0x1f0 [ 287.102527][ C0] ? end_repeat_nmi+0x16/0x31 [ 287.102618][ C0] ? lockdep_hardirqs_on_prepare+0x1a5/0x7a0 [ 287.102638][ C0] ? lockdep_hardirqs_on_prepare+0x1a5/0x7a0 [ 287.102658][ C0] ? lockdep_hardirqs_on_prepare+0x1a5/0x7a0 [ 287.102678][ C0] [ 287.102682][ C0] [ 287.102689][ C0] ? print_irqtrace_events+0x220/0x220 [ 287.102708][ C0] ? do_raw_spin_unlock+0x13b/0x8b0 [ 287.102731][ C0] ? rcu_is_watching+0x15/0xb0 [ 287.102747][ C0] trace_hardirqs_on+0x28/0x40 [ 287.102764][ C0] finish_lock_switch+0x93/0x110 [ 287.102780][ C0] finish_task_switch+0x134/0x650 [ 287.102799][ C0] ? __switch_to_asm+0x38/0x60 [ 287.102820][ C0] __schedule+0x187b/0x48f0 [ 287.102851][ C0] ? release_firmware_map_entry+0x190/0x190 [ 287.102869][ C0] ? _raw_spin_unlock_irqrestore+0xdd/0x140 [ 287.102891][ C0] ? prb_read_valid+0xa9/0xf0 [ 287.102906][ C0] ? prb_final_commit+0x90/0x90 [ 287.102921][ C0] ? prepare_to_wait_event+0x3b2/0x3f0 [ 287.102943][ C0] schedule+0xc3/0x180 [ 287.102958][ C0] syslog_print+0x2a3/0x9b0 [ 287.102978][ C0] ? unix_dgram_sendmsg+0x15c3/0x2070 [ 287.103052][ C0] ? do_syslog+0x890/0x890 [ 287.103077][ C0] ? read_lock_is_recursive+0x20/0x20 [ 287.103107][ C0] ? wake_bit_function+0x220/0x220 [ 287.103125][ C0] ? smack_privileged_cred+0x303/0x340 [ 287.103182][ C0] ? smack_syslog+0x97/0xe0 [ 287.103198][ C0] do_syslog+0x505/0x890 [ 287.103220][ C0] ? log_buf_vmcoreinfo_setup+0x450/0x450 [ 287.103248][ C0] ? print_irqtrace_events+0x220/0x220 [ 287.103269][ C0] ? syscall_enter_from_user_mode+0x32/0x230 [ 287.103289][ C0] ? lockdep_hardirqs_on+0x98/0x140 [ 287.103310][ C0] __x64_sys_syslog+0x7c/0x90 [ 287.103330][ C0] do_syscall_64+0x41/0xc0 [ 287.103347][ C0] entry_SYSCALL_64_after_hwframe+0x63/0xcd [ 287.103383][ C0] RIP: 0033:0x7f4bdb79cfa7 [ 287.103397][ C0] Code: 73 01 c3 48 8b 0d 81 ce 0c 00 f7 d8 64 89 01 48 83 c8 ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 44 00 00 b8 67 00 00 00 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 8b 0d 51 ce 0c 00 f7 d8 64 89 01 48 [ 287.103408][ C0] RSP: 002b:00007ffe34adaec8 EFLAGS: 00000206 ORIG_RAX: 0000000000000067 [ 287.103425][ C0] RAX: ffffffffffffffda RBX: 00007f4bdb93b4a0 RCX: 00007f4bdb79cfa7 [ 287.103436][ C0] RDX: 00000000000003ff RSI: 00007f4bdb93b4a0 RDI: 0000000000000002 [ 287.103447][ C0] RBP: 0000000000000000 R08: 0000000000000002 R09: 27b8e563ad625ccb [ 287.103457][ C0] R10: 0000000000004000 R11: 0000000000000206 R12: 00007f4bdb93b4a0 [ 287.103467][ C0] R13: 00007f4bdb92b212 R14: 00007f4bdb93b503 R15: 00007f4bdb93b503 [ 287.103486][ C0] [ 287.103493][ C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.366 msecs [ 287.104243][ T28] Kernel panic - not syncing: hung_task: blocked tasks [ 287.104253][ T28] CPU: 1 PID: 28 Comm: khungtaskd Not tainted 6.5.0-rc7-syzkaller-00104-g4f9e7fabf864 #0 [ 287.104270][ T28] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/26/2023 [ 287.104279][ T28] Call Trace: [ 287.104285][ T28] [ 287.104291][ T28] dump_stack_lvl+0x1e7/0x2d0 [ 287.104314][ T28] ? nf_tcp_handle_invalid+0x650/0x650 [ 287.104332][ T28] ? panic+0x770/0x770 [ 287.104358][ T28] ? vscnprintf+0x5d/0x80 [ 287.104381][ T28] panic+0x30f/0x770 [ 287.104403][ T28] ? nmi_trigger_cpumask_backtrace+0x233/0x300 [ 287.104423][ T28] ? __memcpy_flushcache+0x2b0/0x2b0 [ 287.104443][ T28] ? arch_trigger_cpumask_backtrace+0x10/0x10 [ 287.104468][ T28] ? nmi_trigger_cpumask_backtrace+0x233/0x300 [ 287.104486][ T28] ? nmi_trigger_cpumask_backtrace+0x2b4/0x300 [ 287.104507][ T28] ? nmi_trigger_cpumask_backtrace+0x2b9/0x300 [ 287.104528][ T28] watchdog+0xf00/0xf00 [ 287.104553][ T28] kthread+0x2b8/0x350 [ 287.104575][ T28] ? hungtask_pm_notify+0x90/0x90 [ 287.104589][ T28] ? kthread_blkcg+0xd0/0xd0 [ 287.104608][ T28] ret_from_fork+0x2e/0x60 [ 287.104626][ T28] ? kthread_blkcg+0xd0/0xd0 [ 287.104642][ T28] ret_from_fork_asm+0x11/0x20 [ 287.104674][ T28] [ 287.108316][ T28] Kernel Offset: disabled [ 287.680059][ T28] Rebooting in 86400 seconds..