Warning: Permanently added '10.128.0.21' (ED25519) to the list of known hosts. [ 455.282252][ T29] INFO: task syz-executor.5:22973 blocked for more than 143 seconds. [ 455.290318][ T29] Not tainted 6.11.0-syzkaller #0 [ 455.295872][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 455.304528][ T29] task:syz-executor.5 state:D stack:13944 pid:22973 tgid:22972 ppid:22519 flags:0x00004006 [ 455.314660][ T29] Call Trace: [ 455.317925][ T29] [ 455.320828][ T29] __schedule+0x6c3/0xa30 [ 455.325148][ T29] ? schedule+0x21/0x140 [ 455.329355][ T29] schedule+0xac/0x140 [ 455.333412][ T29] ? blk_trace_setup+0x41/0x130 [ 455.338231][ T29] schedule_preempt_disabled+0x32/0x60 [ 455.343687][ T29] __mutex_lock+0x44a/0x970 [ 455.348165][ T29] blk_trace_setup+0x41/0x130 [ 455.352827][ T29] sg_ioctl+0x5a5/0xc90 [ 455.356960][ T29] ? __fget_files+0x1e/0xf0 [ 455.361432][ T29] __se_sys_ioctl+0x6d/0xb0 [ 455.366024][ T29] do_syscall_64+0x8d/0x170 [ 455.370496][ T29] ? srso_alias_return_thunk+0x5/0xfbef5 [ 455.376118][ T29] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 455.381976][ T29] RIP: 0033:0x7f935c8fcee9 [ 455.386374][ T29] RSP: 002b:00007f935c47f0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 455.394763][ T29] RAX: ffffffffffffffda RBX: 00007f935ca2bf80 RCX: 00007f935c8fcee9 [ 455.402716][ T29] RDX: 0000000020000040 RSI: 00000000c0481273 RDI: 0000000000000003 [ 455.410653][ T29] RBP: 00007f935c94949e R08: 0000000000000000 R09: 0000000000000000 [ 455.418607][ T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 455.426658][ T29] R13: 0000000000000006 R14: 00007f935ca2bf80 R15: 00007fff2f2b72c8 [ 455.434614][ T29] [ 455.437608][ T29] INFO: task syz-executor.5:22974 blocked for more than 143 seconds. [ 455.445652][ T29] Not tainted 6.11.0-syzkaller #0 [ 455.451160][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 455.459846][ T29] task:syz-executor.5 state:D stack:14608 pid:22974 tgid:22972 ppid:22519 flags:0x00004006 [ 455.469992][ T29] Call Trace: [ 455.473262][ T29] [ 455.476164][ T29] __schedule+0x6c3/0xa30 [ 455.480464][ T29] ? schedule+0x21/0x140 [ 455.484699][ T29] schedule+0xac/0x140 [ 455.488731][ T29] ? blk_trace_remove+0x1b/0x40 [ 455.493562][ T29] schedule_preempt_disabled+0x32/0x60 [ 455.499010][ T29] __mutex_lock+0x44a/0x970 [ 455.503494][ T29] blk_trace_remove+0x1b/0x40 [ 455.508135][ T29] sg_ioctl+0x2ed/0xc90 [ 455.512270][ T29] ? __fget_files+0x1e/0xf0 [ 455.516740][ T29] __se_sys_ioctl+0x6d/0xb0 [ 455.521209][ T29] do_syscall_64+0x8d/0x170 [ 455.525694][ T29] ? fpregs_restore_userregs+0x7a/0xe0 [ 455.531119][ T29] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 455.537004][ T29] RIP: 0033:0x7f935c8fcee9 [ 455.541387][ T29] RSP: 002b:00007f935c45e0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 455.549816][ T29] RAX: ffffffffffffffda RBX: 00007f935ca2c050 RCX: 00007f935c8fcee9 [ 455.557780][ T29] RDX: 0000000000000000 RSI: 0000000000001276 RDI: 0000000000000003 [ 455.565740][ T29] RBP: 00007f935c94949e R08: 0000000000000000 R09: 0000000000000000 [ 455.573705][ T29] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 455.581716][ T29] R13: 000000000000006e R14: 00007f935ca2c050 R15: 00007fff2f2b72c8 [ 455.589685][ T29] [ 455.592836][ T29] [ 455.592836][ T29] Showing all locks held in the system: [ 455.600522][ T29] 1 lock held by khungtaskd/29: [ 455.605346][ T29] #0: ffffffff82777e10 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x30/0x100 [ 455.615145][ T29] 2 locks held by getty/791: [ 455.619698][ T29] #0: ffff8881052b30a0 (&tty->ldisc_sem){....}-{0:0}, at: tty_ldisc_ref_wait+0x20/0x40 [ 455.629408][ T29] #1: ffffc900001fb2f0 (&ldata->atomic_read_lock){....}-{3:3}, at: n_tty_read+0x23d/0x910 [ 455.639401][ T29] 2 locks held by kworker/u8:8/3055: [ 455.644675][ T29] #0: ffff888100078948 ((wq_completion)events_unbound){....}-{0:0}, at: process_scheduled_works+0x246/0x5c0 [ 455.656214][ T29] #1: ffffc90001a37e58 ((work_completion)(&(&kfence_timer)->work)){....}-{0:0}, at: process_scheduled_works+0x266/0x5c0 [ 455.668907][ T29] 2 locks held by syz-executor.1/22517: [ 455.674434][ T29] 1 lock held by syz-executor.5/22973: [ 455.679856][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 455.689571][ T29] 1 lock held by syz-executor.5/22974: [ 455.695016][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 455.704731][ T29] 1 lock held by syz-executor.2/23430: [ 455.710151][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 455.719857][ T29] 1 lock held by syz-executor.2/23431: [ 455.725291][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 455.735023][ T29] 1 lock held by syz-executor/23889: [ 455.740273][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 455.750005][ T29] 1 lock held by syz-executor/23890: [ 455.755284][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 455.765000][ T29] 1 lock held by syz-executor.3/24346: [ 455.770422][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 455.780159][ T29] 1 lock held by syz-executor.3/24347: [ 455.785605][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 455.795315][ T29] 1 lock held by syz-executor.4/24804: [ 455.800735][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 455.810441][ T29] 1 lock held by syz-executor.4/24805: [ 455.815881][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 455.825585][ T29] 1 lock held by syz-executor.1/25261: [ 455.831003][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 455.840719][ T29] 1 lock held by syz-executor.1/25262: [ 455.846225][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 455.855955][ T29] 1 lock held by syz-executor.5/25718: [ 455.861374][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 455.871092][ T29] 1 lock held by syz-executor.5/25719: [ 455.876532][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 455.886241][ T29] 1 lock held by syz-executor.2/26176: [ 455.891658][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 455.901365][ T29] 1 lock held by syz-executor.2/26177: [ 455.906838][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 455.916559][ T29] 1 lock held by syz-executor/26634: [ 455.921808][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 455.931522][ T29] 1 lock held by syz-executor/26635: [ 455.936813][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 455.946538][ T29] 1 lock held by syz-executor.3/27091: [ 455.951971][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 455.961707][ T29] 1 lock held by syz-executor.3/27092: [ 455.967172][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 455.976895][ T29] 1 lock held by syz-executor.4/27549: [ 455.982335][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 455.992028][ T29] 1 lock held by syz-executor.4/27550: [ 455.997472][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 456.007185][ T29] 1 lock held by syz-executor.1/28006: [ 456.012619][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 456.022320][ T29] 1 lock held by syz-executor.1/28007: [ 456.027740][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 456.037988][ T29] 1 lock held by syz-executor.5/28463: [ 456.043429][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 456.053162][ T29] 1 lock held by syz-executor.5/28464: [ 456.058589][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 456.068315][ T29] 1 lock held by syz-executor.2/28921: [ 456.073755][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 456.083487][ T29] 1 lock held by syz-executor.2/28922: [ 456.088912][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 456.098627][ T29] 1 lock held by syz-executor/29379: [ 456.103891][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 456.113604][ T29] 1 lock held by syz-executor/29380: [ 456.118856][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 456.128567][ T29] 1 lock held by syz-executor.3/29836: [ 456.134007][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 456.143721][ T29] 1 lock held by syz-executor.3/29837: [ 456.149147][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 456.158875][ T29] 1 lock held by syz-executor.4/30294: [ 456.164318][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 456.174037][ T29] 1 lock held by syz-executor.4/30295: [ 456.179458][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 456.189173][ T29] 1 lock held by syz-executor.1/30751: [ 456.194608][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 456.204323][ T29] 1 lock held by syz-executor.1/30752: [ 456.209743][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 456.219453][ T29] 1 lock held by syz-executor.5/31208: [ 456.224886][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 456.234635][ T29] 1 lock held by syz-executor.5/31209: [ 456.240063][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 456.249879][ T29] 1 lock held by syz-executor.2/31666: [ 456.255318][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 456.265030][ T29] 1 lock held by syz-executor.2/31667: [ 456.270450][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 456.280160][ T29] 1 lock held by syz-executor/32124: [ 456.285422][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 456.295132][ T29] 1 lock held by syz-executor/32125: [ 456.300379][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 456.310088][ T29] 1 lock held by syz-executor.3/32581: [ 456.315524][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_setup+0x41/0x130 [ 456.325228][ T29] 1 lock held by syz-executor.3/32582: [ 456.330646][ T29] #0: ffff8881062ed660 (&q->debugfs_mutex){....}-{3:3}, at: blk_trace_remove+0x1b/0x40 [ 456.340360][ T29] [ 456.342664][ T29] ============================================= [ 456.342664][ T29] [ 456.351035][ T29] NMI backtrace for cpu 0 [ 456.355326][ T29] CPU: 0 UID: 0 PID: 29 Comm: khungtaskd Not tainted 6.11.0-syzkaller #0 [ 456.363696][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 456.373715][ T29] Call Trace: [ 456.376961][ T29] [ 456.379861][ T29] dump_stack_lvl+0x3e/0xe0 [ 456.384331][ T29] nmi_cpu_backtrace+0x146/0x160 [ 456.389236][ T29] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 456.395179][ T29] nmi_trigger_cpumask_backtrace+0x8e/0x140 [ 456.401035][ T29] watchdog+0x5e4/0x610 [ 456.405156][ T29] ? watchdog+0xce/0x610 [ 456.409360][ T29] ? __pfx_watchdog+0x10/0x10 [ 456.413997][ T29] kthread+0xec/0x100 [ 456.417940][ T29] ? __pfx_kthread+0x10/0x10 [ 456.422495][ T29] ret_from_fork+0x34/0x40 [ 456.426879][ T29] ? __pfx_kthread+0x10/0x10 [ 456.431430][ T29] ret_from_fork_asm+0x1a/0x30 [ 456.436158][ T29] [ 456.439177][ T29] Sending NMI from CPU 0 to CPUs 1: [ 456.444370][ C1] NMI backtrace for cpu 1 [ 456.444374][ C1] CPU: 1 UID: 0 PID: 22517 Comm: syz-executor.1 Not tainted 6.11.0-syzkaller #0 [ 456.444378][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/06/2024 [ 456.444380][ C1] RIP: 0010:lock_release+0xfe/0x2d0 [ 456.444385][ C1] Code: 6c 24 10 48 89 1c 24 41 8d 5c 24 ff 48 63 c3 4c 8d 34 80 4b 8d ac f5 00 0a 00 00 48 89 ef 4c 89 fe e8 36 71 c0 00 89 5c 24 0c <85> c0 0f 84 89 00 00 00 48 85 ed 0f 84 bd 00 00 00 8b 45 20 3d 00 [ 456.444388][ C1] RSP: 0018:ffffc90001097c68 EFLAGS: 00000046 [ 456.444391][ C1] RAX: 0000000000000001 RBX: 0000000000000002 RCX: 0000000000000001 [ 456.444393][ C1] RDX: adf33ccc0f23a820 RSI: ffffffff86ec6230 RDI: ffff8881fa29a590 [ 456.444395][ C1] RBP: ffff8881fa29a590 R08: 0000000000000001 R09: 0000000000000000 [ 456.444396][ C1] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000003 [ 456.444398][ C1] R13: ffff8881fa299b40 R14: 000000000000000a R15: ffffffff86ec6230 [ 456.444403][ C1] FS: 00007fee488ae6c0(0000) GS:ffff888237d00000(0000) knlGS:0000000000000000 [ 456.444405][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 456.444407][ C1] CR2: 000055d024c2c040 CR3: 00000001c0bba000 CR4: 0000000000350ef0 [ 456.444411][ C1] Call Trace: [ 456.444412][ C1] [ 456.444414][ C1] ? nmi_cpu_backtrace+0x110/0x160 [ 456.444419][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 456.444424][ C1] ? nmi_handle+0x9b/0x1c0 [ 456.444427][ C1] ? nmi_handle+0x25/0x1c0 [ 456.444430][ C1] ? lock_release+0xfe/0x2d0 [ 456.444432][ C1] ? default_do_nmi+0x63/0x160 [ 456.444436][ C1] ? exc_nmi+0xfc/0x170 [ 456.444439][ C1] ? end_repeat_nmi+0xf/0x53 [ 456.444445][ C1] ? lock_release+0xfe/0x2d0 [ 456.444447][ C1] ? lock_release+0xfe/0x2d0 [ 456.444450][ C1] ? lock_release+0xfe/0x2d0 [ 456.444452][ C1] [ 456.444453][ C1] [ 456.444454][ C1] ? debug_check_no_obj_freed+0x1f2/0x250 [ 456.444459][ C1] _raw_spin_unlock_irqrestore+0x2d/0xb0 [ 456.444464][ C1] debug_check_no_obj_freed+0x1f2/0x250 [ 456.444468][ C1] free_unref_page+0x1ac/0x610 [ 456.444473][ C1] relay_destroy_buf+0x37/0xd0 [ 456.444476][ C1] relay_close+0x9b/0x210 [ 456.444478][ C1] blk_trace_free+0x12/0x70 [ 456.444481][ C1] __blk_trace_remove+0x82/0xa0 [ 456.444485][ C1] blk_trace_remove+0x23/0x40 [ 456.444488][ C1] sg_ioctl+0x2ed/0xc90 [ 456.444493][ C1] ? __fget_files+0x1e/0xf0 [ 456.444497][ C1] __se_sys_ioctl+0x6d/0xb0 [ 456.444501][ C1] do_syscall_64+0x8d/0x170 [ 456.444504][ C1] ? fpregs_restore_userregs+0x7a/0xe0 [ 456.444508][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 456.444511][ C1] RIP: 0033:0x7fee48d4cee9 [ 456.444515][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 e1 20 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 456.444517][ C1] RSP: 002b:00007fee488ae0c8 EFLAGS: 00000246 ORIG_RAX: 0000000000000010 [ 456.444519][ C1] RAX: ffffffffffffffda RBX: 00007fee48e7c050 RCX: 00007fee48d4cee9 [ 456.444521][ C1] RDX: 0000000000000000 RSI: 0000000000001276 RDI: 0000000000000003 [ 456.444523][ C1] RBP: 00007fee48d9949e R08: 0000000000000000 R09: 0000000000000000 [ 456.444524][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 456.444526][ C1] R13: 000000000000006e R14: 00007fee48e7c050 R15: 00007ffed8bb9a58 [ 456.444529][ C1] [ 456.445366][ T29] Kernel panic - not syncing: hung_task: blocked tasks [ 456.780817][ T29] Kernel Offset: disabled [ 456.785108][ T29] Rebooting in 86400 seconds..