Warning: Permanently added '10.128.10.60' (ED25519) to the list of known hosts.
2025/06/18 08:10:18 ignoring optional flag "sandboxArg"="0"
2025/06/18 08:10:18 parsed 1 programs
[ 57.359033][ T30] audit: type=1400 audit(1750234219.155:101): avc: denied { unlink } for pid=1897 comm="syz-executor" name="swap-file" dev="sda1" ino=2026 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=file permissive=1 trawcon="root:object_r:swapfile_t"
[ 57.390646][ T1897] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 57.914840][ T30] audit: type=1401 audit(1750234219.705:102): op=setxattr invalid_context="u:object_r:app_data_file:s0:c512,c768"
2025/06/18 08:10:21 executed programs: 0
[ 59.303429][ T30] audit: type=1400 audit(1750234221.095:103): avc: denied { read } for pid=2428 comm="syz.3.18" name="msr" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[ 59.326014][ T30] audit: type=1400 audit(1750234221.095:104): avc: denied { open } for pid=2428 comm="syz.3.18" path="/dev/cpu/0/msr" dev="devtmpfs" ino=84 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cpu_device_t tclass=chr_file permissive=1
[ 59.381588][ T30] audit: type=1400 audit(1750234221.145:105): avc: denied { execute } for pid=2428 comm="syz.3.18" path=2F6D656D66643A01FDAE2E2BA68CB63F32193994532C7C783F55655BBDE1210333BC2723FF179B25F35B64202097F5479741C2D8F05571E62BA56C940BB607175CFB0421E4C4B1A21CFF433B94510DB67D9CEC430BCFEBE49A52E52C8203202864656C6574656429 dev="hugetlbfs" ino=3298 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:hugetlbfs_t tclass=file permissive=1
2025/06/18 08:10:26 executed programs: 66
2025/06/18 08:10:31 executed programs: 198
2025/06/18 08:10:36 executed programs: 358
2025/06/18 08:10:41 executed programs: 503
2025/06/18 08:10:46 executed programs: 602
2025/06/18 08:10:51 executed programs: 761
2025/06/18 08:10:56 executed programs: 919
2025/06/18 08:11:01 executed programs: 1057
2025/06/18 08:11:06 executed programs: 1237
2025/06/18 08:11:11 executed programs: 1431
2025/06/18 08:11:16 executed programs: 1592
2025/06/18 08:11:21 executed programs: 1713
2025/06/18 08:11:26 executed programs: 1863
2025/06/18 08:11:31 executed programs: 2061
2025/06/18 08:11:36 executed programs: 2237
2025/06/18 08:11:41 executed programs: 2384
2025/06/18 08:11:46 executed programs: 2587
2025/06/18 08:11:51 executed programs: 2804
2025/06/18 08:11:56 executed programs: 3008
2025/06/18 08:12:01 executed programs: 3203
2025/06/18 08:12:06 executed programs: 3407
2025/06/18 08:12:11 executed programs: 3644
2025/06/18 08:12:16 executed programs: 3863
2025/06/18 08:12:21 executed programs: 4097
2025/06/18 08:12:26 executed programs: 4327
2025/06/18 08:12:32 executed programs: 4590
2025/06/18 08:12:37 executed programs: 4837
2025/06/18 08:12:42 executed programs: 5069
2025/06/18 08:12:47 executed programs: 5298
2025/06/18 08:12:52 executed programs: 5532
2025/06/18 08:12:57 executed programs: 5776
[ 219.308589][ T31] INFO: task syz.4.144:4841 blocked for more than 143 seconds.
[ 219.316180][ T31] Not tainted 6.16.0-rc2-syzkaller #0
[ 219.322079][ T31] Blocked by coredump.
[ 219.326653][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 219.335330][ T31] task:syz.4.144 state:D stack:14152 pid:4841 tgid:4841 ppid:2433 task_flags:0x40004c flags:0x00004002
[ 219.347256][ T31] Call Trace:
[ 219.350588][ T31]
[ 219.353503][ T31] __schedule+0x593/0xd20
[ 219.357818][ T31] schedule+0x25/0x110
[ 219.361864][ T31] schedule_preempt_disabled+0x13/0x30
[ 219.367291][ T31] __mutex_lock+0x617/0xb10
[ 219.372020][ T31] ? remove_inode_hugepages+0x111/0x5b0
[ 219.378008][ T31] ? remove_inode_hugepages+0x111/0x5b0
[ 219.383625][ T31] remove_inode_hugepages+0x111/0x5b0
[ 219.389001][ T31] ? do_raw_spin_unlock+0x52/0xc0
[ 219.394005][ T31] hugetlbfs_evict_inode+0x2f/0x90
[ 219.399153][ T31] evict+0x119/0x2a0
[ 219.403049][ T31] __dentry_kill+0x6f/0x1c0
[ 219.407541][ T31] ? dput+0x122/0x290
[ 219.411586][ T31] dput+0x14e/0x290
[ 219.415364][ T31] __fput+0x139/0x2b0
[ 219.419339][ T31] task_work_run+0x54/0x80
[ 219.423736][ T31] do_exit+0x27b/0xba0
[ 219.427820][ T31] ? xfd_validate_state+0x14/0x40
[ 219.432849][ T31] __x64_sys_exit+0x16/0x20
[ 219.437343][ T31] x64_sys_call+0xea3/0x1730
[ 219.441986][ T31] do_syscall_64+0x6d/0x2d0
[ 219.446487][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 219.452380][ T31] RIP: 0033:0x7fae1c9adff9
[ 219.456833][ T31] RSP: 002b:00007fae1c405fe8 EFLAGS: 00000246 ORIG_RAX: 000000000000003c
[ 219.465446][ T31] RAX: ffffffffffffffda RBX: 00007fae1cb66058 RCX: 00007fae1c9adff9
[ 219.473446][ T31] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[ 219.481433][ T31] RBP: 00007fae1ca20296 R08: 0000000000000000 R09: 0000000000000000
[ 219.489517][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 219.497470][ T31] R13: 0000000000000000 R14: 00007fae1cb66058 R15: 00007ffeeb01a018
[ 219.505450][ T31]
[ 219.511101][ T31] INFO: task syz.4.149:4844 blocked for more than 143 seconds.
[ 219.518641][ T31] Not tainted 6.16.0-rc2-syzkaller #0
[ 219.524496][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 219.533152][ T31] task:syz.4.149 state:D stack:13288 pid:4844 tgid:4844 ppid:2433 task_flags:0x400040 flags:0x00004004
[ 219.545328][ T31] Call Trace:
[ 219.548637][ T31]
[ 219.551587][ T31] __schedule+0x593/0xd20
[ 219.555899][ T31] schedule+0x25/0x110
[ 219.560068][ T31] io_schedule+0x41/0x60
[ 219.564282][ T31] folio_wait_bit_common+0x141/0x380
[ 219.569697][ T31] ? __pfx_wake_page_function+0x10/0x10
[ 219.575214][ T31] __filemap_get_folio+0x1bb/0x370
[ 219.580334][ T31] hugetlb_fault+0x77a/0xc80
[ 219.584952][ T31] handle_mm_fault+0x341/0x350
[ 219.589708][ T31] exc_page_fault+0x18b/0x750
[ 219.594414][ T31] asm_exc_page_fault+0x26/0x30
[ 219.599290][ T31] RIP: 0033:0x7fae1c977208
[ 219.603674][ T31] RSP: 002b:00007ffeeb01a178 EFLAGS: 00010246
[ 219.609731][ T31] RAX: 0000000020000640 RBX: 0000000000000004 RCX: 006b6e696c766564
[ 219.617685][ T31] RDX: 0000000000000008 RSI: 006b6e696c766564 RDI: 0000000020000640
[ 219.625663][ T31] RBP: 00007fae1cb67a80 R08: 00007fae1c828000 R09: 0000000000000001
[ 219.633657][ T31] R10: 0000000000000001 R11: 0000000000000009 R12: 0000000000010760
[ 219.641623][ T31] R13: 00007ffeeb01a280 R14: 0000000000000032 R15: fffffffffffffffe
[ 219.649615][ T31]
[ 219.658438][ T31] INFO: task syz.4.149:4845 blocked for more than 143 seconds.
[ 219.666131][ T31] Not tainted 6.16.0-rc2-syzkaller #0
[ 219.672059][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 219.680721][ T31] task:syz.4.149 state:D stack:14128 pid:4845 tgid:4844 ppid:2433 task_flags:0x400140 flags:0x00004004
[ 219.692704][ T31] Call Trace:
[ 219.695961][ T31]
[ 219.698891][ T31] __schedule+0x593/0xd20
[ 219.703194][ T31] schedule+0x25/0x110
[ 219.707227][ T31] schedule_preempt_disabled+0x13/0x30
[ 219.712683][ T31] __mutex_lock+0x617/0xb10
[ 219.717152][ T31] ? hugetlb_wp+0x858/0xcf0
[ 219.721652][ T31] ? hugetlb_wp+0x858/0xcf0
[ 219.726150][ T31] hugetlb_wp+0x858/0xcf0
[ 219.730497][ T31] hugetlb_fault+0xadc/0xc80
[ 219.735082][ T31] handle_mm_fault+0x341/0x350
[ 219.739870][ T31] exc_page_fault+0x21c/0x750
[ 219.744522][ T31] asm_exc_page_fault+0x26/0x30
[ 219.749467][ T31] RIP: 0010:rep_movs_alternative+0x33/0x90
[ 219.755329][ T31] Code: 73 25 85 c9 74 0f 8a 06 88 07 48 ff c7 48 ff c6 48 ff c9 75 f1 e9 bd 92 01 00 66 66 2e 0f 1f 84 00 00 00 00 00 66 90 48 8b 06 <48> 89 07 48 83 c6 08 48 83 c7 08 83 e9 08 74 db 83 f9 08 73 e8 eb
[ 219.775009][ T31] RSP: 0018:ffffc900022e3de0 EFLAGS: 00050246
[ 219.781050][ T31] RAX: 0000000000000000 RBX: 0000000000000008 RCX: 0000000000000008
[ 219.789013][ T31] RDX: 000000002002fd10 RSI: ffffc900022e3e10 RDI: 000000002002fd08
[ 219.796962][ T31] RBP: 000000002002fd08 R08: 0000000000080000 R09: 0000000000000001
[ 219.804935][ T31] R10: 0000000000000001 R11: 0000000000000001 R12: ffffc900022e3e10
[ 219.812895][ T31] R13: 0000000000000000 R14: 0000000020019680 R15: 0000000000016688
[ 219.820846][ T31] _copy_to_user+0x56/0x70
[ 219.825235][ T31] msr_read+0x6a/0xf0
[ 219.829206][ T31] vfs_read+0xad/0x370
[ 219.833258][ T31] ? fdget_pos+0x13c/0x180
[ 219.837639][ T31] ksys_read+0x6e/0xf0
[ 219.841697][ T31] do_syscall_64+0x6d/0x2d0
[ 219.846168][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 219.852041][ T31] RIP: 0033:0x7fae1c9adff9
[ 219.856422][ T31] RSP: 002b:00007fae1c427038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 219.864813][ T31] RAX: ffffffffffffffda RBX: 00007fae1cb65f80 RCX: 00007fae1c9adff9
[ 219.872896][ T31] RDX: 0000000000018ff8 RSI: 0000000020019680 RDI: 0000000000000003
[ 219.880862][ T31] RBP: 00007fae1ca20296 R08: 0000000000000000 R09: 0000000000000000
[ 219.888821][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 219.896768][ T31] R13: 0000000000000000 R14: 00007fae1cb65f80 R15: 00007ffeeb01a018
[ 219.904741][ T31]
[ 219.913263][ T31] INFO: task syz.1.196:5073 blocked for more than 143 seconds.
[ 219.920856][ T31] Not tainted 6.16.0-rc2-syzkaller #0
[ 219.926739][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 219.935401][ T31] task:syz.1.196 state:D stack:13336 pid:5073 tgid:5066 ppid:2426 task_flags:0x400040 flags:0x00004004
[ 219.947288][ T31] Call Trace:
[ 219.950566][ T31]
[ 219.953482][ T31] __schedule+0x593/0xd20
[ 219.957790][ T31] schedule+0x25/0x110
[ 219.961861][ T31] schedule_preempt_disabled+0x13/0x30
[ 219.967301][ T31] __mutex_lock+0x617/0xb10
[ 219.971797][ T31] ? hugetlbfs_fallocate+0x263/0x740
[ 219.977054][ T31] ? hugetlbfs_fallocate+0x263/0x740
[ 219.982314][ T31] ? hugetlbfs_fallocate+0x19e/0x740
[ 219.987570][ T31] hugetlbfs_fallocate+0x263/0x740
[ 219.992741][ T31] ? find_held_lock+0x2b/0x80
[ 219.997411][ T31] ? vfs_fallocate+0x127/0x3c0
[ 220.002171][ T31] ? preempt_count_add+0x4c/0x90
[ 220.007074][ T31] ? vfs_fallocate+0x2ad/0x3c0
[ 220.011821][ T31] vfs_fallocate+0x127/0x3c0
[ 220.016379][ T31] __x64_sys_fallocate+0x44/0xa0
[ 220.021320][ T31] ? rcu_is_watching+0x11/0x50
[ 220.026055][ T31] do_syscall_64+0x6d/0x2d0
[ 220.030553][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 220.036420][ T31] RIP: 0033:0x7f2e7386dff9
[ 220.040813][ T31] RSP: 002b:00007f2e732ce038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 220.049217][ T31] RAX: ffffffffffffffda RBX: 00007f2e73a26058 RCX: 00007f2e7386dff9
[ 220.057163][ T31] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 220.065129][ T31] RBP: 00007f2e738e0296 R08: 0000000000000000 R09: 0000000000000000
[ 220.073088][ T31] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000000
[ 220.081069][ T31] R13: 0000000000000000 R14: 00007f2e73a26058 R15: 00007ffd89856828
[ 220.089035][ T31]
[ 220.093782][ T31] INFO: task syz.0.212:5136 blocked for more than 144 seconds.
[ 220.101415][ T31] Not tainted 6.16.0-rc2-syzkaller #0
[ 220.107285][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 220.115928][ T31] task:syz.0.212 state:D stack:14344 pid:5136 tgid:5136 ppid:2423 task_flags:0x400040 flags:0x00004004
[ 220.127862][ T31] Call Trace:
[ 220.131170][ T31]
[ 220.134112][ T31] __schedule+0x593/0xd20
[ 220.138424][ T31] schedule+0x25/0x110
[ 220.142600][ T31] schedule_preempt_disabled+0x13/0x30
[ 220.148046][ T31] __mutex_lock+0x617/0xb10
[ 220.152562][ T31] ? hugetlb_fault+0xbd/0xc80
[ 220.157231][ T31] ? hugetlb_fault+0xbd/0xc80
[ 220.161983][ T31] hugetlb_fault+0xbd/0xc80
[ 220.166482][ T31] handle_mm_fault+0x341/0x350
[ 220.171269][ T31] exc_page_fault+0x18b/0x750
[ 220.175926][ T31] asm_exc_page_fault+0x26/0x30
[ 220.180784][ T31] RIP: 0033:0x7fcf317b7208
[ 220.185206][ T31] RSP: 002b:00007ffecbf4ed98 EFLAGS: 00010246
[ 220.191290][ T31] RAX: 0000000020000640 RBX: 0000000000000004 RCX: 006b6e696c766564
[ 220.199412][ T31] RDX: 0000000000000008 RSI: 006b6e696c766564 RDI: 0000000020000640
[ 220.207362][ T31] RBP: 00007fcf319a7a80 R08: 00007fcf31668000 R09: 0000000000000001
[ 220.215336][ T31] R10: 0000000000000001 R11: 0000000000000009 R12: 000000000001108b
[ 220.223396][ T31] R13: 00007ffecbf4eea0 R14: 0000000000000032 R15: fffffffffffffffe
[ 220.231359][ T31]
[ 220.235491][ T31] INFO: task syz.0.212:5137 blocked for more than 144 seconds.
[ 220.243234][ T31] Not tainted 6.16.0-rc2-syzkaller #0
[ 220.249654][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 220.258302][ T31] task:syz.0.212 state:D stack:12824 pid:5137 tgid:5136 ppid:2423 task_flags:0x400140 flags:0x00004004
[ 220.270206][ T31] Call Trace:
[ 220.273461][ T31]
[ 220.276366][ T31] __schedule+0x593/0xd20
[ 220.280694][ T31] schedule+0x25/0x110
[ 220.284730][ T31] schedule_preempt_disabled+0x13/0x30
[ 220.290194][ T31] __mutex_lock+0x617/0xb10
[ 220.294682][ T31] ? hugetlbfs_fallocate+0x263/0x740
[ 220.299974][ T31] ? hugetlbfs_fallocate+0x263/0x740
[ 220.305229][ T31] ? hugetlbfs_fallocate+0x19e/0x740
[ 220.310507][ T31] hugetlbfs_fallocate+0x263/0x740
[ 220.315592][ T31] ? vfs_fallocate+0x127/0x3c0
[ 220.320375][ T31] ? preempt_count_add+0x4c/0x90
[ 220.325289][ T31] ? vfs_fallocate+0x2ad/0x3c0
[ 220.330318][ T31] vfs_fallocate+0x127/0x3c0
[ 220.334879][ T31] __x64_sys_fallocate+0x44/0xa0
[ 220.340036][ T31] ? rcu_is_watching+0x11/0x50
[ 220.344931][ T31] do_syscall_64+0x6d/0x2d0
[ 220.349475][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 220.355349][ T31] RIP: 0033:0x7fcf317edff9
[ 220.359780][ T31] RSP: 002b:00007fcf31267038 EFLAGS: 00000246 ORIG_RAX: 000000000000011d
[ 220.368161][ T31] RAX: ffffffffffffffda RBX: 00007fcf319a5f80 RCX: 00007fcf317edff9
[ 220.376170][ T31] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000004
[ 220.384150][ T31] RBP: 00007fcf31860296 R08: 0000000000000000 R09: 0000000000000000
[ 220.392120][ T31] R10: 0000000000000400 R11: 0000000000000246 R12: 0000000000000000
[ 220.400093][ T31] R13: 0000000000000000 R14: 00007fcf319a5f80 R15: 00007ffecbf4ec38
[ 220.408130][ T31]
[ 220.416957][ T31]
[ 220.416957][ T31] Showing all locks held in the system:
[ 220.424697][ T31] 1 lock held by rcu_preempt/16:
[ 220.429633][ T31] #0: ffff888237c2a418 (&rq->__lock){....}-{2:2}, at: __schedule+0xf5/0xd20
[ 220.438378][ T31] 1 lock held by khungtaskd/31:
[ 220.443213][ T31] #0: ffffffff82980700 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x36/0x120
[ 220.453030][ T31] 2 locks held by getty/848:
[ 220.457585][ T31] #0: ffff88810dee48a0 (&tty->ldisc_sem){....}-{0:0}, at: tty_ldisc_ref_wait+0x23/0x60
[ 220.467311][ T31] #1: ffffc900001fb2f0 (&ldata->atomic_read_lock){....}-{3:3}, at: n_tty_read+0x17a/0x660
[ 220.477284][ T31] 1 lock held by syz.4.144/4841:
[ 220.482195][ T31] #0: ffff8881016f4338 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: remove_inode_hugepages+0x111/0x5b0
[ 220.493660][ T31] 3 locks held by syz.4.149/4844:
[ 220.498656][ T31] #0: ffff888106b2b888 (vm_lock){....}-{0:0}, at: exc_page_fault+0x14c/0x750
2025/06/18 08:13:02 executed programs: 5992
[ 220.507494][ T31] #1: ffff8881016f4338 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xbd/0xc80
[ 220.518107][ T31] #2: ffff88810e3a5ae8 (&resv_map->rw_sema){....}-{3:3}, at: hugetlb_fault+0xc5/0xc80
[ 220.527821][ T31] 2 locks held by syz.4.149/4845:
[ 220.532822][ T31] #0: ffff8881063fd1e0 (&mm->mmap_lock){....}-{3:3}, at: lock_mm_and_find_vma+0x26/0x650
[ 220.542797][ T31] #1: ffff8881016f4338 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_wp+0x858/0xcf0
[ 220.553208][ T31] 3 locks held by syz.1.196/5073:
[ 220.558205][ T31] #0: ffff8881022a5400 (sb_writers#13){....}-{0:0}, at: __x64_sys_fallocate+0x44/0xa0
[ 220.568020][ T31] #1: ffff88810275c148 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xce/0x740
[ 220.578979][ T31] #2: ffff8881016f4338 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x263/0x740
[ 220.590194][ T31] 2 locks held by syz.0.212/5136:
[ 220.595184][ T31] #0: ffff8881027c1388 (vm_lock){....}-{0:0}, at: exc_page_fault+0x14c/0x750
[ 220.604047][ T31] #1: ffff8881016f4338 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xbd/0xc80
[ 220.614627][ T31] 3 locks held by syz.0.212/5137:
[ 220.619725][ T31] #0: ffff8881022a5400 (sb_writers#13){....}-{0:0}, at: __x64_sys_fallocate+0x44/0xa0
[ 220.629357][ T31] #1: ffff888100ea5c48 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xce/0x740
[ 220.640327][ T31] #2: ffff8881016f4338 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x263/0x740
[ 220.651601][ T31] 3 locks held by syz.2.581/7592:
[ 220.656592][ T31] #0: ffff888101701e88 (vm_lock){....}-{0:0}, at: exc_page_fault+0x14c/0x750
[ 220.665447][ T31] #1: ffff8881016f43c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xbd/0xc80
[ 220.676054][ T31] #2: ffff888118a870e8 (&resv_map->rw_sema){....}-{3:3}, at: hugetlb_fault+0xc5/0xc80
[ 220.685686][ T31] 2 locks held by syz.2.581/7593:
[ 220.691206][ T31] #0: ffff88811a0d6fe0 (&mm->mmap_lock){....}-{3:3}, at: lock_mm_and_find_vma+0x26/0x650
[ 220.701108][ T31] #1: ffff8881016f43c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_wp+0x858/0xcf0
[ 220.711615][ T31] 3 locks held by syz.4.590/7782:
[ 220.716632][ T31] #0: ffff8881022a5400 (sb_writers#13){....}-{0:0}, at: __x64_sys_fallocate+0x44/0xa0
[ 220.726258][ T31] #1: ffff88810275e0c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xce/0x740
[ 220.737196][ T31] #2: ffff8881016f43c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x263/0x740
[ 220.748384][ T31] 2 locks held by syz.1.725/8656:
[ 220.753405][ T31] #0: ffff88811a0d0be0 (&mm->mmap_lock){....}-{3:3}, at: lock_mm_and_find_vma+0x169/0x650
[ 220.763441][ T31] #1: ffff8881016f43c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xbd/0xc80
[ 220.774036][ T31] 3 locks held by syz.1.725/8659:
[ 220.779205][ T31] #0: ffff8881022a5400 (sb_writers#13){....}-{0:0}, at: __x64_sys_fallocate+0x44/0xa0
[ 220.789008][ T31] #1: ffff88810dbb72c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xce/0x740
[ 220.799944][ T31] #2: ffff8881016f43c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x263/0x740
[ 220.811152][ T31] 2 locks held by syz.0.1343/12505:
[ 220.816315][ T31] #0: ffff8881200f33e0 (&mm->mmap_lock){....}-{3:3}, at: lock_mm_and_find_vma+0x169/0x650
[ 220.826286][ T31] #1: ffff8881016f4338 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlb_fault+0xbd/0xc80
[ 220.836887][ T31] 3 locks held by syz.0.1343/12515:
[ 220.842130][ T31] #0: ffff8881022a5400 (sb_writers#13){....}-{0:0}, at: __x64_sys_fallocate+0x44/0xa0
[ 220.851783][ T31] #1: ffff88810dbb85c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xce/0x740
[ 220.862719][ T31] #2: ffff8881016f4338 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x263/0x740
[ 220.873905][ T31] 3 locks held by syz.3.1347/12522:
[ 220.879099][ T31] #0: ffff8881022a5400 (sb_writers#13){....}-{0:0}, at: __x64_sys_fallocate+0x44/0xa0
[ 220.888720][ T31] #1: ffff88810dbb97c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xce/0x740
[ 220.899668][ T31] #2: ffff8881016f4338 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x263/0x740
[ 220.910875][ T31] 3 locks held by syz.1.1350/12529:
[ 220.916053][ T31] #0: ffff8881022a5400 (sb_writers#13){....}-{0:0}, at: __x64_sys_fallocate+0x44/0xa0
[ 220.926114][ T31] #1: ffff88810dbba0c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xce/0x740
[ 220.937107][ T31] #2: ffff8881016f4338 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x263/0x740
[ 220.948317][ T31] 3 locks held by syz.2.1364/12590:
[ 220.953523][ T31] #0: ffff8881022a5400 (sb_writers#13){....}-{0:0}, at: __x64_sys_fallocate+0x44/0xa0
[ 220.963178][ T31] #1: ffff88810dbbbbc8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xce/0x740
[ 220.974143][ T31] #2: ffff8881016f43c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x263/0x740
[ 220.985428][ T31] 3 locks held by syz.4.1934/16359:
[ 220.990621][ T31] #0: ffff8881022a5400 (sb_writers#13){....}-{0:0}, at: __x64_sys_fallocate+0x44/0xa0
[ 221.000262][ T31] #1: ffff88810a315348 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xce/0x740
[ 221.011195][ T31] #2: ffff8881016f4338 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x263/0x740
[ 221.022381][ T31] 3 locks held by syz.3.1933/16366:
[ 221.028071][ T31] #0: ffff8881022a5400 (sb_writers#13){....}-{0:0}, at: __x64_sys_fallocate+0x44/0xa0
[ 221.037712][ T31] #1: ffff88810a3145c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xce/0x740
[ 221.048643][ T31] #2: ffff8881016f43c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x263/0x740
[ 221.059836][ T31] 3 locks held by syz.0.1944/16404:
[ 221.065015][ T31] #0: ffff8881022a5400 (sb_writers#13){....}-{0:0}, at: __x64_sys_fallocate+0x44/0xa0
[ 221.074647][ T31] #1: ffff88810a3160c8 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xce/0x740
[ 221.085591][ T31] #2: ffff8881016f43c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x263/0x740
[ 221.096795][ T31] 3 locks held by syz.4.2649/20392:
[ 221.101996][ T31] #0: ffff8881022a5400 (sb_writers#13){....}-{0:0}, at: __x64_sys_fallocate+0x44/0xa0
[ 221.111879][ T31] #1: ffff88810ff32548 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xce/0x740
[ 221.123155][ T31] #2: ffff8881016f4338 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x263/0x740
[ 221.134399][ T31] 3 locks held by syz.0.2861/21230:
[ 221.139593][ T31] #0: ffff8881022a5400 (sb_writers#13){....}-{0:0}, at: __x64_sys_fallocate+0x44/0xa0
[ 221.149234][ T31] #1: ffff88810ff34a48 (&sb->s_type->i_mutex_key#15){....}-{3:3}, at: hugetlbfs_fallocate+0xce/0x740
[ 221.160187][ T31] #2: ffff8881016f43c8 (&hugetlb_fault_mutex_table[i]){....}-{3:3}, at: hugetlbfs_fallocate+0x263/0x740
[ 221.171472][ T31]
[ 221.173772][ T31] =============================================
[ 221.173772][ T31]
[ 221.182181][ T31] NMI backtrace for cpu 1
[ 221.182187][ T31] CPU: 1 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.16.0-rc2-syzkaller #0 PREEMPT(undef)
[ 221.182190][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 221.182192][ T31] Call Trace:
[ 221.182194][ T31]
[ 221.182196][ T31] dump_stack_lvl+0x5a/0x90
[ 221.182203][ T31] nmi_cpu_backtrace+0xd4/0x110
[ 221.182208][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 221.182214][ T31] nmi_trigger_cpumask_backtrace+0xd5/0x140
[ 221.182218][ T31] watchdog+0x652/0x690
[ 221.182224][ T31] ? watchdog+0x1f5/0x690
[ 221.182228][ T31] ? __pfx_watchdog+0x10/0x10
[ 221.182231][ T31] kthread+0x107/0x200
[ 221.182235][ T31] ? __pfx_kthread+0x10/0x10
[ 221.182238][ T31] ret_from_fork+0x16f/0x190
[ 221.182242][ T31] ? __pfx_kthread+0x10/0x10
[ 221.182245][ T31] ret_from_fork_asm+0x1a/0x30
[ 221.182253][ T31]
[ 221.182254][ T31] Sending NMI from CPU 1 to CPUs 0:
[ 221.278172][ C0] NMI backtrace for cpu 0
[ 221.278176][ C0] CPU: 0 UID: 0 PID: 3425 Comm: syz.2.6017 Not tainted 6.16.0-rc2-syzkaller #0 PREEMPT(undef)
[ 221.278179][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025
[ 221.278181][ C0] RIP: 0010:__rdmsr_safe_on_cpu+0xf/0x50
[ 221.278187][ C0] Code: c7 c1 a0 0e 85 81 e9 00 ff ff ff 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 f3 0f 1e fa 41 54 55 53 48 89 fb 8b 0f 0f 32 <45> 31 e4 66 90 48 c1 e2 20 48 09 c2 48 89 d5 48 89 6b 08 48 8d 7b
[ 221.278189][ C0] RSP: 0018:ffffc90003ff3cc8 EFLAGS: 00000002
[ 221.278192][ C0] RAX: 0000000000000000 RBX: ffffc90003ff3d40 RCX: 0000000000000000
[ 221.278193][ C0] RDX: 0000000000000000 RSI: ffffffff825342fd RDI: ffffc90003ff3d40
[ 221.278195][ C0] RBP: 0000000000000246 R08: 0000000000000002 R09: 0000000000000000
[ 221.278196][ C0] R10: 0000000000000000 R11: 0000000000000000 R12: ffffc90003ff3d40
[ 221.278197][ C0] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000012fa8
[ 221.278201][ C0] FS: 00007f696fb776c0(0000) GS:ffff8882b49e6000(0000) knlGS:0000000000000000
[ 221.278203][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 221.278204][ C0] CR2: 000000002002c000 CR3: 000000010f721000 CR4: 00000000003506f0
[ 221.278206][ C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 221.278211][ C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 221.278213][ C0] Call Trace:
[ 221.278214][ C0]
[ 221.278216][ C0] ? __pfx___rdmsr_safe_on_cpu+0x10/0x10
[ 221.278219][ C0] generic_exec_single+0x79/0x1a0
[ 221.278224][ C0] smp_call_function_single_async+0x2c/0x70
[ 221.278227][ C0] rdmsr_safe_on_cpu+0x8f/0xe0
[ 221.278229][ C0] ? __pfx___rdmsr_safe_on_cpu+0x10/0x10
[ 221.278233][ C0] msr_read+0x92/0xf0
[ 221.278237][ C0] vfs_read+0xad/0x370
[ 221.278242][ C0] ? fdget_pos+0x13c/0x180
[ 221.278246][ C0] ksys_read+0x6e/0xf0
[ 221.278248][ C0] do_syscall_64+0x6d/0x2d0
[ 221.278252][ C0] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 221.278255][ C0] RIP: 0033:0x7f69700fdff9
[ 221.278258][ C0] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 221.278259][ C0] RSP: 002b:00007f696fb77038 EFLAGS: 00000246 ORIG_RAX: 0000000000000000
[ 221.278262][ C0] RAX: ffffffffffffffda RBX: 00007f69702b5f80 RCX: 00007f69700fdff9
[ 221.278263][ C0] RDX: 0000000000018ff8 RSI: 0000000020019680 RDI: 0000000000000003
[ 221.278265][ C0] RBP: 00007f6970170296 R08: 0000000000000000 R09: 0000000000000000
[ 221.278266][ C0] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 221.278267][ C0] R13: 0000000000000000 R14: 00007f69702b5f80 R15: 00007ffe90530128
[ 221.278269][ C0]
[ 221.279169][ T31] Kernel panic - not syncing: hung_task: blocked tasks
[ 221.555782][ T31] Kernel Offset: disabled
[ 221.560065][ T31] Rebooting in 86400 seconds..