[ 32.050978][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 32.051094][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! [ 32.059054][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 32.079754][ T374] cgroup: cgroup: disabling cgroup2 socket matching due to net_prio or net_cls activation [ 32.541350][ T177] device bridge_slave_1 left promiscuous mode [ 32.547468][ T177] bridge0: port 2(bridge_slave_1) entered disabled state [ 32.555301][ T177] device bridge_slave_0 left promiscuous mode [ 32.561488][ T177] bridge0: port 1(bridge_slave_0) entered disabled state [ 32.851404][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #288!!! [ 32.951393][ T0] NOHZ tick-stop error: Non-RCU local softirq work is pending, handler #08!!! Warning: Permanently added '10.128.0.111' (ECDSA) to the list of known hosts. 2022/04/24 06:01:09 parsed 1 programs [ 38.796137][ T23] kauditd_printk_skb: 65 callbacks suppressed [ 38.796140][ T23] audit: type=1400 audit(1650780069.410:148): avc: denied { mounton } for pid=401 comm="syz-executor" path="/syzcgroup/unified" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=dir permissive=1 [ 38.798670][ T401] cgroup: Unknown subsys name 'net' [ 38.830925][ T401] cgroup: Unknown subsys name 'devices' [ 38.837055][ T401] cgroup: Unknown subsys name 'hugetlb' 2022/04/24 06:01:09 executed programs: 0 [ 38.842709][ T401] cgroup: Unknown subsys name 'rlimit' [ 38.848551][ T23] audit: type=1400 audit(1650780069.470:149): avc: denied { mounton } for pid=401 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1 [ 38.903129][ T23] audit: type=1400 audit(1650780069.470:150): avc: denied { mount } for pid=401 comm="syz-executor" name="/" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=filesystem permissive=1 [ 38.927145][ T23] audit: type=1400 audit(1650780069.480:151): avc: denied { mounton } for pid=405 comm="syz-executor.0" path="/sys/fs/fuse/connections" dev="fusectl" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fusefs_t tclass=dir permissive=1 [ 38.966615][ T407] bridge0: port 1(bridge_slave_0) entered blocking state [ 38.970979][ T23] audit: type=1400 audit(1650780069.480:152): avc: denied { module_request } for pid=405 comm="syz-executor.0" kmod="netdev-nr0" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1 [ 38.973699][ T407] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.003028][ T407] device bridge_slave_0 entered promiscuous mode [ 39.011279][ T407] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.018297][ T407] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.025595][ T407] device bridge_slave_1 entered promiscuous mode [ 39.037113][ T405] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.044171][ T405] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.051385][ T405] device bridge_slave_0 entered promiscuous mode [ 39.062899][ T405] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.069908][ T405] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.077315][ T405] device bridge_slave_1 entered promiscuous mode [ 39.102090][ T413] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.109259][ T413] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.116552][ T413] device bridge_slave_0 entered promiscuous mode [ 39.123073][ T411] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.130061][ T411] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.137301][ T411] device bridge_slave_0 entered promiscuous mode [ 39.151521][ T413] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.158546][ T413] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.165752][ T413] device bridge_slave_1 entered promiscuous mode [ 39.172272][ T411] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.179261][ T411] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.186502][ T411] device bridge_slave_1 entered promiscuous mode [ 39.236990][ T414] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.244072][ T414] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.251497][ T414] device bridge_slave_0 entered promiscuous mode [ 39.259993][ T414] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.267059][ T414] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.274216][ T414] device bridge_slave_1 entered promiscuous mode [ 39.280630][ T415] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.287695][ T415] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.294923][ T415] device bridge_slave_0 entered promiscuous mode [ 39.301657][ T415] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.308657][ T415] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.315966][ T415] device bridge_slave_1 entered promiscuous mode [ 39.346073][ T407] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.353105][ T407] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.360298][ T407] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.367326][ T407] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.383306][ T405] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.390315][ T405] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.397539][ T405] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.404563][ T405] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.442667][ T413] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.449803][ T413] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.457058][ T413] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.464193][ T413] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.484746][ T415] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.491776][ T415] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.498974][ T415] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.506089][ T415] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.513996][ T414] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.521017][ T414] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.528214][ T414] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.535220][ T414] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.543651][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.551913][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 39.559996][ T5] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.567143][ T5] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.574344][ T5] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.581669][ T5] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.588885][ T5] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.596232][ T5] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.603363][ T5] bridge0: port 1(bridge_slave_0) entered disabled state [ 39.610411][ T5] bridge0: port 2(bridge_slave_1) entered disabled state [ 39.617792][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.625117][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.643584][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 39.651482][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 39.659263][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.666589][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.674263][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.682902][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.689892][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.697148][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 39.705261][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.712270][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.731011][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 39.739172][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 39.747066][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 39.755075][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 39.762355][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.769599][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.777665][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.784670][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 39.791932][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 39.799953][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 39.806959][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 39.814249][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready [ 39.864927][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.873122][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 39.882618][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 39.891135][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 39.899345][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 39.908048][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 39.916731][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 39.925022][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 39.932918][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 39.941450][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 39.949155][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 39.957261][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 39.965529][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 39.973503][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 39.981643][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 39.989650][ T24] bridge0: port 1(bridge_slave_0) entered blocking state [ 39.996652][ T24] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.003994][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.012117][ T24] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.019112][ T24] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.026419][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.034234][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.042075][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.050092][ T24] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.057132][ T24] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.064631][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.072827][ T24] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.079826][ T24] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.087119][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.095035][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.102862][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.110718][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.118649][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready [ 40.125935][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready [ 40.154296][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 40.162596][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.170372][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 40.178534][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.186541][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 40.194907][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.203159][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 40.210846][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.218644][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready [ 40.226846][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready [ 40.234955][ T5] bridge0: port 1(bridge_slave_0) entered blocking state [ 40.241962][ T5] bridge0: port 1(bridge_slave_0) entered forwarding state [ 40.249269][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready [ 40.257447][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready [ 40.265506][ T5] bridge0: port 2(bridge_slave_1) entered blocking state [ 40.272520][ T5] bridge0: port 2(bridge_slave_1) entered forwarding state [ 40.279795][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready [ 40.287736][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready [ 40.295572][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready [ 40.303550][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready [ 40.311376][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready [ 40.319511][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready [ 40.327719][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready [ 40.335431][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready [ 40.343187][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 40.351176][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.359124][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 40.367216][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.375390][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 40.383515][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.391710][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 40.399658][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.417448][ T23] audit: type=1400 audit(1650780071.030:153): avc: denied { mount } for pid=413 comm="syz-executor.3" name="/" dev="binder" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1 [ 40.420116][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready [ 40.449595][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready [ 40.457720][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 40.465958][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.475657][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 40.483827][ T24] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.509040][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 40.517147][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.525799][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 40.534730][ T5] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready [ 40.555513][ T378] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready [ 40.563816][ T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready [ 40.586585][ T378] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready [ 40.596840][ T378] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready 2022/04/24 06:01:15 executed programs: 12 [ 174.630902][ T25] INFO: task syz-executor.3:444 blocked for more than 122 seconds. [ 174.639273][ T25] Not tainted 5.10.110-syzkaller #0 [ 174.645939][ T23] audit: type=1400 audit(1650780205.260:154): avc: denied { append } for pid=142 comm="syslogd" name="messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 174.663706][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 174.700793][ T25] task:syz-executor.3 state:D stack: 0 pid: 444 ppid: 413 flags:0x00000004 [ 174.709978][ T25] Call Trace: [ 174.710805][ T23] audit: type=1400 audit(1650780205.260:155): avc: denied { open } for pid=142 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 174.735576][ T25] __schedule+0x6e4/0x1910 [ 174.735583][ T25] ? io_schedule_timeout+0x150/0x150 [ 174.770802][ T25] ? __kasan_check_write+0x14/0x20 [ 174.775903][ T25] ? __mutex_add_waiter+0x25a/0x2f0 [ 174.790829][ T23] audit: type=1400 audit(1650780205.260:156): avc: denied { getattr } for pid=142 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 174.800798][ T25] ? mutex_spin_on_owner+0x260/0x260 [ 174.840800][ T25] schedule+0xdb/0x270 [ 174.844864][ T25] schedule_preempt_disabled+0x13/0x20 [ 174.850384][ T25] __mutex_lock.constprop.0+0x34b/0xd00 [ 174.890803][ T25] ? ww_mutex_lock+0x1b0/0x1b0 [ 174.895564][ T25] ? current_time+0x6d/0x200 [ 174.900126][ T25] ? generic_update_time+0x17c/0x290 [ 174.930795][ T25] ? preempt_count_add+0x7a/0x160 [ 174.935815][ T25] __mutex_lock_slowpath+0xe/0x10 [ 174.960795][ T25] mutex_lock+0xc2/0xd0 [ 174.964937][ T25] ? __mutex_lock_slowpath+0x10/0x10 [ 174.970199][ T25] ? avc_has_perm+0x121/0x290 [ 175.000797][ T25] ? avc_has_perm_noaudit+0x210/0x210 [ 175.006166][ T25] pipe_write+0x117/0x1930 [ 175.010614][ T25] ? kasan_print_address_stack_frame+0xe1/0x110 [ 175.060813][ T25] ? anon_pipe_buf_try_steal+0x140/0x140 [ 175.066453][ T25] ? inode_has_perm+0x142/0x220 [ 175.090800][ T25] ? _raw_spin_unlock_irqrestore+0x47/0x80 [ 175.096602][ T25] ? file_has_perm+0x24c/0x360 [ 175.120797][ T25] ? __wake_up_common+0x5a0/0x5a0 [ 175.125805][ T25] new_sync_write+0x49b/0x6d0 [ 175.130455][ T25] ? futex_exit_release+0x200/0x200 [ 175.150833][ T25] ? kfree+0xc2/0x4e0 [ 175.154803][ T25] ? new_sync_read+0x6d0/0x6d0 [ 175.159542][ T25] ? fsnotify_handle_inode_event.isra.0+0x2a0/0x2a0 [ 175.180794][ T25] ? rw_verify_area+0xc3/0x2b0 [ 175.185554][ T25] ? __fget_light.part.0+0x19d/0x330 [ 175.200831][ T25] vfs_write+0x4f5/0x750 [ 175.205068][ T25] ksys_write+0x192/0x210 [ 175.209384][ T25] ? __fget_light.part.0+0x19d/0x330 [ 175.240813][ T25] ? __ia32_sys_read+0xa0/0xa0 [ 175.245596][ T25] ? __kasan_check_write+0x14/0x20 [ 175.250684][ T25] ? switch_fpu_return+0xc3/0x1c0 [ 175.280813][ T25] __x64_sys_write+0x6e/0xb0 [ 175.285415][ T25] ? syscall_exit_to_user_mode+0x27/0x160 [ 175.310802][ T25] do_syscall_64+0x32/0x80 [ 175.315206][ T25] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 175.330794][ T25] RIP: 0033:0x7fbe40220049 [ 175.335331][ T25] RSP: 002b:00007fbe40175168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 175.380802][ T25] RAX: ffffffffffffffda RBX: 00007fbe40333030 RCX: 00007fbe40220049 [ 175.389209][ T25] RDX: 00000000ffffff14 RSI: 0000000020000240 RDI: 0000000000000005 [ 175.420799][ T25] RBP: 00007fbe4027a08d R08: 0000000000000000 R09: 0000000000000000 [ 175.428774][ T25] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 175.450797][ T25] R13: 00007ffcf0cdf26f R14: 00007fbe40175300 R15: 0000000000022000 [ 175.470797][ T25] INFO: task syz-executor.5:445 blocked for more than 123 seconds. [ 175.478668][ T25] Not tainted 5.10.110-syzkaller #0 [ 175.500799][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 175.509450][ T25] task:syz-executor.5 state:D stack: 0 pid: 445 ppid: 414 flags:0x00000004 [ 175.530798][ T25] Call Trace: [ 175.534072][ T25] __schedule+0x6e4/0x1910 [ 175.538462][ T25] ? io_schedule_timeout+0x150/0x150 [ 175.570796][ T25] ? __kasan_check_write+0x14/0x20 [ 175.575890][ T25] ? __mutex_add_waiter+0x25a/0x2f0 [ 175.600799][ T25] ? mutex_spin_on_owner+0x260/0x260 [ 175.606071][ T25] schedule+0xdb/0x270 [ 175.610120][ T25] schedule_preempt_disabled+0x13/0x20 [ 175.640795][ T25] __mutex_lock.constprop.0+0x34b/0xd00 [ 175.646335][ T25] ? ww_mutex_lock+0x1b0/0x1b0 [ 175.670795][ T25] ? current_time+0x6d/0x200 [ 175.675366][ T25] ? generic_update_time+0x17c/0x290 [ 175.680634][ T25] ? preempt_count_add+0x7a/0x160 [ 175.720796][ T25] __mutex_lock_slowpath+0xe/0x10 [ 175.725894][ T25] mutex_lock+0xc2/0xd0 [ 175.730022][ T25] ? __mutex_lock_slowpath+0x10/0x10 [ 175.750933][ T25] ? avc_has_perm+0x121/0x290 [ 175.755612][ T25] ? avc_has_perm_noaudit+0x210/0x210 [ 175.770807][ T25] pipe_write+0x117/0x1930 [ 175.775207][ T25] ? kasan_print_address_stack_frame+0xe1/0x110 [ 175.790795][ T25] ? anon_pipe_buf_try_steal+0x140/0x140 [ 175.796413][ T25] ? inode_has_perm+0x142/0x220 [ 175.810792][ T25] ? _raw_spin_unlock_irqrestore+0x47/0x80 [ 175.816577][ T25] ? file_has_perm+0x24c/0x360 [ 175.840801][ T25] ? __wake_up_common+0x5a0/0x5a0 [ 175.845815][ T25] new_sync_write+0x49b/0x6d0 [ 175.850465][ T25] ? futex_exit_release+0x200/0x200 [ 175.890794][ T25] ? kfree+0xc2/0x4e0 [ 175.894935][ T25] ? new_sync_read+0x6d0/0x6d0 [ 175.899673][ T25] ? fsnotify_handle_inode_event.isra.0+0x2a0/0x2a0 [ 175.920806][ T25] ? rw_verify_area+0xc3/0x2b0 [ 175.925560][ T25] ? __fget_light.part.0+0x19d/0x330 [ 175.940796][ T25] vfs_write+0x4f5/0x750 [ 175.945020][ T25] ksys_write+0x192/0x210 [ 175.949321][ T25] ? __fget_light.part.0+0x19d/0x330 [ 175.970793][ T25] ? __ia32_sys_read+0xa0/0xa0 [ 175.975539][ T25] ? __kasan_check_write+0x14/0x20 [ 175.980624][ T25] ? switch_fpu_return+0xc3/0x1c0 [ 176.020795][ T25] __x64_sys_write+0x6e/0xb0 [ 176.025382][ T25] ? syscall_exit_to_user_mode+0x27/0x160 [ 176.050796][ T25] do_syscall_64+0x32/0x80 [ 176.055379][ T25] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 176.080792][ T25] RIP: 0033:0x7f906ea46049 [ 176.085193][ T25] RSP: 002b:00007f906e99b168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 176.120791][ T25] RAX: ffffffffffffffda RBX: 00007f906eb59030 RCX: 00007f906ea46049 [ 176.128753][ T25] RDX: 00000000ffffff14 RSI: 0000000020000240 RDI: 0000000000000005 [ 176.150789][ T25] RBP: 00007f906eaa008d R08: 0000000000000000 R09: 0000000000000000 [ 176.158745][ T25] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 176.210792][ T25] R13: 00007ffcad7c4d3f R14: 00007f906e99b300 R15: 0000000000022000 [ 176.218760][ T25] INFO: task syz-executor.1:447 blocked for more than 124 seconds. [ 176.250823][ T25] Not tainted 5.10.110-syzkaller #0 [ 176.256549][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 176.300822][ T25] task:syz-executor.1 state:D stack: 0 pid: 447 ppid: 407 flags:0x00000004 [ 176.310031][ T25] Call Trace: [ 176.340816][ T25] __schedule+0x6e4/0x1910 [ 176.345234][ T25] ? io_schedule_timeout+0x150/0x150 [ 176.350507][ T25] ? __kasan_check_write+0x14/0x20 [ 176.380806][ T25] ? __mutex_add_waiter+0x25a/0x2f0 [ 176.386004][ T25] ? mutex_spin_on_owner+0x260/0x260 [ 176.420806][ T25] schedule+0xdb/0x270 [ 176.424896][ T25] schedule_preempt_disabled+0x13/0x20 [ 176.430348][ T25] __mutex_lock.constprop.0+0x34b/0xd00 [ 176.450819][ T25] ? ww_mutex_lock+0x1b0/0x1b0 [ 176.455575][ T25] ? current_time+0x6d/0x200 [ 176.460320][ T25] ? generic_update_time+0x17c/0x290 [ 176.480806][ T25] ? preempt_count_add+0x7a/0x160 [ 176.485839][ T25] __mutex_lock_slowpath+0xe/0x10 [ 176.500819][ T25] mutex_lock+0xc2/0xd0 [ 176.504973][ T25] ? __mutex_lock_slowpath+0x10/0x10 [ 176.510228][ T25] ? avc_has_perm+0x121/0x290 [ 176.540813][ T25] ? avc_has_perm_noaudit+0x210/0x210 [ 176.546187][ T25] pipe_write+0x117/0x1930 [ 176.550582][ T25] ? kasan_print_address_stack_frame+0xe1/0x110 [ 176.570804][ T25] ? anon_pipe_buf_try_steal+0x140/0x140 [ 176.576427][ T25] ? inode_has_perm+0x142/0x220 [ 176.590797][ T25] ? _raw_spin_unlock_irqrestore+0x47/0x80 [ 176.596581][ T25] ? file_has_perm+0x24c/0x360 [ 176.610797][ T25] ? __wake_up_common+0x5a0/0x5a0 [ 176.615804][ T25] new_sync_write+0x49b/0x6d0 [ 176.620454][ T25] ? futex_exit_release+0x200/0x200 [ 176.660805][ T25] ? kfree+0xc2/0x4e0 [ 176.670890][ T25] ? new_sync_read+0x6d0/0x6d0 [ 176.680835][ T25] ? fsnotify_handle_inode_event.isra.0+0x2a0/0x2a0 [ 176.687410][ T25] ? rw_verify_area+0xc3/0x2b0 [ 176.710896][ T25] ? __fget_light.part.0+0x19d/0x330 [ 176.716178][ T25] vfs_write+0x4f5/0x750 [ 176.720419][ T25] ksys_write+0x192/0x210 [ 176.740795][ T25] ? __fget_light.part.0+0x19d/0x330 [ 176.746070][ T25] ? __ia32_sys_read+0xa0/0xa0 [ 176.760799][ T25] ? __kasan_check_write+0x14/0x20 [ 176.765891][ T25] ? switch_fpu_return+0xc3/0x1c0 [ 176.790816][ T25] __x64_sys_write+0x6e/0xb0 [ 176.795389][ T25] ? syscall_exit_to_user_mode+0x27/0x160 [ 176.820794][ T25] do_syscall_64+0x32/0x80 [ 176.825195][ T25] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 176.840804][ T25] RIP: 0033:0x7f4890562049 [ 176.845201][ T25] RSP: 002b:00007f48904b7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 176.880846][ T25] RAX: ffffffffffffffda RBX: 00007f4890675030 RCX: 00007f4890562049 [ 176.888805][ T25] RDX: 00000000ffffff14 RSI: 0000000020000240 RDI: 0000000000000005 [ 176.920793][ T25] RBP: 00007f48905bc08d R08: 0000000000000000 R09: 0000000000000000 [ 176.928750][ T25] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 176.980794][ T25] R13: 00007ffc6ce62caf R14: 00007f48904b7300 R15: 0000000000022000 [ 176.988795][ T25] INFO: task syz-executor.2:452 blocked for more than 125 seconds. [ 177.020793][ T25] Not tainted 5.10.110-syzkaller #0 [ 177.026496][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 177.070791][ T25] task:syz-executor.2 state:D stack: 0 pid: 452 ppid: 411 flags:0x00000004 [ 177.079976][ T25] Call Trace: [ 177.090806][ T25] __schedule+0x6e4/0x1910 [ 177.095212][ T25] ? io_schedule_timeout+0x150/0x150 [ 177.100479][ T25] ? __kasan_check_write+0x14/0x20 [ 177.130795][ T25] ? __mutex_add_waiter+0x25a/0x2f0 [ 177.135982][ T25] ? mutex_spin_on_owner+0x260/0x260 [ 177.160794][ T25] schedule+0xdb/0x270 [ 177.164844][ T25] schedule_preempt_disabled+0x13/0x20 [ 177.170277][ T25] __mutex_lock.constprop.0+0x34b/0xd00 [ 177.220800][ T25] ? ww_mutex_lock+0x1b0/0x1b0 [ 177.225562][ T25] ? current_time+0x6d/0x200 [ 177.230129][ T25] ? generic_update_time+0x17c/0x290 [ 177.260820][ T25] ? preempt_count_add+0x7a/0x160 [ 177.265847][ T25] __mutex_lock_slowpath+0xe/0x10 [ 177.290808][ T25] mutex_lock+0xc2/0xd0 [ 177.294956][ T25] ? __mutex_lock_slowpath+0x10/0x10 [ 177.300221][ T25] ? avc_has_perm+0x121/0x290 [ 177.330795][ T25] ? avc_has_perm_noaudit+0x210/0x210 [ 177.336159][ T25] pipe_write+0x117/0x1930 [ 177.340553][ T25] ? kasan_print_address_stack_frame+0xe1/0x110 [ 177.360809][ T25] ? anon_pipe_buf_try_steal+0x140/0x140 [ 177.366437][ T25] ? inode_has_perm+0x142/0x220 [ 177.380796][ T25] ? _raw_spin_unlock_irqrestore+0x47/0x80 [ 177.386597][ T25] ? file_has_perm+0x24c/0x360 [ 177.420813][ T25] ? __wake_up_common+0x5a0/0x5a0 [ 177.425841][ T25] new_sync_write+0x49b/0x6d0 [ 177.430492][ T25] ? futex_exit_release+0x200/0x200 [ 177.460834][ T25] ? kfree+0xc2/0x4e0 [ 177.464823][ T25] ? new_sync_read+0x6d0/0x6d0 [ 177.469566][ T25] ? fsnotify_handle_inode_event.isra.0+0x2a0/0x2a0 [ 177.520801][ T25] ? rw_verify_area+0xc3/0x2b0 [ 177.525560][ T25] ? __fget_light.part.0+0x19d/0x330 [ 177.550797][ T25] vfs_write+0x4f5/0x750 [ 177.555033][ T25] ksys_write+0x192/0x210 [ 177.559332][ T25] ? __fget_light.part.0+0x19d/0x330 [ 177.590820][ T25] ? __ia32_sys_read+0xa0/0xa0 [ 177.595582][ T25] ? __kasan_check_write+0x14/0x20 [ 177.600669][ T25] ? switch_fpu_return+0xc3/0x1c0 [ 177.630810][ T25] __x64_sys_write+0x6e/0xb0 [ 177.635393][ T25] ? syscall_exit_to_user_mode+0x27/0x160 [ 177.670795][ T25] do_syscall_64+0x32/0x80 [ 177.675204][ T25] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 177.700796][ T25] RIP: 0033:0x7f40193f0049 [ 177.705202][ T25] RSP: 002b:00007f4019345168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 177.730792][ T25] RAX: ffffffffffffffda RBX: 00007f4019503030 RCX: 00007f40193f0049 [ 177.738755][ T25] RDX: 00000000ffffff14 RSI: 0000000020000240 RDI: 0000000000000005 [ 177.760793][ T25] RBP: 00007f401944a08d R08: 0000000000000000 R09: 0000000000000000 [ 177.768752][ T25] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 177.790791][ T25] R13: 00007ffc667c206f R14: 00007f4019345300 R15: 0000000000022000 [ 177.810796][ T25] NMI backtrace for cpu 0 [ 177.815108][ T25] CPU: 0 PID: 25 Comm: khungtaskd Not tainted 5.10.110-syzkaller #0 [ 177.823075][ T25] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.833103][ T25] Call Trace: [ 177.836373][ T25] dump_stack_lvl+0x81/0xac [ 177.840853][ T25] dump_stack+0x10/0x12 [ 177.844980][ T25] nmi_cpu_backtrace.cold+0x93/0x95 [ 177.850160][ T25] ? lapic_can_unplug_cpu+0x80/0x80 [ 177.855335][ T25] nmi_trigger_cpumask_backtrace+0x17b/0x1b0 [ 177.861285][ T25] arch_trigger_cpumask_backtrace+0x14/0x20 [ 177.867152][ T25] watchdog+0x88b/0xb10 [ 177.871281][ T25] ? reset_hung_task_detector+0x30/0x30 [ 177.876798][ T25] ? __kasan_check_read+0x11/0x20 [ 177.881796][ T25] ? __kthread_parkme+0x78/0x140 [ 177.886705][ T25] ? schedule+0xf2/0x270 [ 177.890919][ T25] ? reset_hung_task_detector+0x30/0x30 [ 177.896438][ T25] kthread+0x345/0x420 [ 177.900484][ T25] ? schedule_tail+0xe9/0x1e0 [ 177.905135][ T25] ? kthread_create_worker_on_cpu+0xd0/0xd0 [ 177.911000][ T25] ret_from_fork+0x1f/0x30 [ 177.915906][ T25] Sending NMI from CPU 0 to CPUs 1: [ 177.921630][ C1] NMI backtrace for cpu 1 [ 177.921632][ C1] CPU: 1 PID: 436 Comm: syz-executor.3 Not tainted 5.10.110-syzkaller #0 [ 177.921634][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 177.921635][ C1] RIP: 0010:skb_put+0xa/0x170 [ 177.921638][ C1] Code: c0 74 06 48 8b 5d f8 c9 c3 e8 79 40 be fd eb f3 e8 eb 6b 49 fe eb d0 e8 04 6c 49 fe eb 95 66 90 48 b8 00 00 00 00 00 fc ff df <55> 48 89 e5 41 55 41 54 49 89 fc 48 81 c7 d0 00 00 00 48 89 fa 53 [ 177.921639][ C1] RSP: 0018:ffffc90000160ca8 EFLAGS: 00000282 [ 177.921642][ C1] RAX: dffffc0000000000 RBX: ffff88810cb52000 RCX: 0000000000000004 [ 177.921644][ C1] RDX: ffff8881059acf90 RSI: 0000000000000008 RDI: ffff88812d071dc0 [ 177.921645][ C1] RBP: ffffc90000160ce0 R08: 0000000000000000 R09: ffff88810bdb9ccf [ 177.921647][ C1] R10: ffffed10217b7399 R11: 0000000000000000 R12: 0000000000000008 [ 177.921648][ C1] R13: 0000000000000004 R14: 0000000000000000 R15: ffff8881059acf90 [ 177.921650][ C1] FS: 00007fbe40196700(0000) GS:ffff8881f7300000(0000) knlGS:0000000000000000 [ 177.921651][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 177.921653][ C1] CR2: 00000000008de0c8 CR3: 000000010fbd5000 CR4: 00000000003506a0 [ 177.921654][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 177.921656][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 177.921657][ C1] Call Trace: [ 177.921657][ C1] [ 177.921659][ C1] ? __ndisc_fill_addr_option+0x31/0x110 [ 177.921660][ C1] ndisc_send_rs+0x45c/0x640 [ 177.921661][ C1] addrconf_rs_timer+0x265/0x770 [ 177.921662][ C1] ? ipv6_get_lladdr+0x250/0x250 [ 177.921663][ C1] ? _raw_spin_lock_irq+0x87/0x110 [ 177.921665][ C1] ? ipv6_get_lladdr+0x250/0x250 [ 177.921666][ C1] call_timer_fn+0x2b/0x1c0 [ 177.921667][ C1] __run_timers.part.0+0x557/0x8f0 [ 177.921668][ C1] ? ipv6_get_lladdr+0x250/0x250 [ 177.921669][ C1] ? call_timer_fn+0x1c0/0x1c0 [ 177.921670][ C1] ? kvm_sched_clock_read+0x2f/0x40 [ 177.921672][ C1] ? sched_clock+0x2e/0x50 [ 177.921673][ C1] ? sched_clock_cpu+0x1b/0x1f0 [ 177.921674][ C1] ? hrtimer_interrupt+0x3a9/0x8f0 [ 177.921675][ C1] run_timer_softirq+0xa2/0x1a0 [ 177.921676][ C1] __do_softirq+0x1c6/0x61c [ 177.921677][ C1] asm_call_irq_on_stack+0xf/0x20 [ 177.921678][ C1] [ 177.921680][ C1] do_softirq_own_stack+0x61/0x80 [ 177.921681][ C1] irq_exit_rcu+0x95/0x170 [ 177.921682][ C1] sysvec_apic_timer_interrupt+0x3f/0xe0 [ 177.921683][ C1] asm_sysvec_apic_timer_interrupt+0x12/0x20 [ 177.921685][ C1] RIP: 0010:bio_iov_iter_get_pages+0x708/0xf20 [ 177.921688][ C1] Code: 07 00 00 41 8b 5e 08 48 39 d9 0f 87 6a 01 00 00 48 8b 85 38 ff ff ff 48 29 cb 4c 8d 60 10 4c 89 e0 48 c1 e8 03 42 80 3c 28 00 <0f> 85 09 07 00 00 48 8b 85 38 ff ff ff 49 8d 7e 0c 48 39 58 10 48 [ 177.921689][ C1] RSP: 0018:ffffc90000a772d0 EFLAGS: 00000246 [ 177.921691][ C1] RAX: 1ffff9200014ef83 RBX: 0000000000000000 RCX: 0000000000000000 [ 177.921693][ C1] RDX: 0000000000000000 RSI: 0000000000000000 RDI: ffff888125c4fff8 [ 177.921694][ C1] RBP: ffffc90000a773f8 R08: ffffc90000a77c18 R09: dffffc0000000000 [ 177.921696][ C1] R10: ffff888125c4fff0 R11: 0000000000000000 R12: ffffc90000a77c18 [ 177.921697][ C1] R13: dffffc0000000000 R14: ffff888125c4fff0 R15: ffff88810b3088c0 [ 177.921698][ C1] ? bio_add_pc_page+0xf0/0xf0 [ 177.921699][ C1] ? bvec_alloc+0x280/0x280 [ 177.921700][ C1] iomap_dio_bio_actor+0x681/0xe10 [ 177.921702][ C1] iomap_dio_actor+0x6b/0x480 [ 177.921703][ C1] iomap_apply+0x18e/0x620 [ 177.921704][ C1] ? __kasan_check_write+0x14/0x20 [ 177.921705][ C1] ? iomap_dio_rw+0x30/0x30 [ 177.921706][ C1] ? trace_event_raw_event_iomap_apply+0x480/0x480 [ 177.921708][ C1] ? __kasan_check_read+0x11/0x20 [ 177.921709][ C1] ? filemap_check_errors+0x56/0xf0 [ 177.921710][ C1] __iomap_dio_rw+0x659/0x1080 [ 177.921711][ C1] ? iomap_dio_rw+0x30/0x30 [ 177.921712][ C1] ? iomap_dio_bio_actor+0xe10/0xe10 [ 177.921713][ C1] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 177.921715][ C1] iomap_dio_rw+0xd/0x30 [ 177.921716][ C1] ext4_file_write_iter+0x7cf/0x1670 [ 177.921717][ C1] ? __kasan_slab_free+0x111/0x150 [ 177.921718][ C1] ? _raw_write_lock_irqsave+0xd1/0xe0 [ 177.921719][ C1] ? ext4_buffered_write_iter+0x430/0x430 [ 177.921721][ C1] ? __kasan_check_write+0x14/0x20 [ 177.921722][ C1] ? _raw_spin_lock_irqsave+0x8c/0x120 [ 177.921723][ C1] ? __mutex_lock_slowpath+0xe/0x10 [ 177.921724][ C1] do_iter_readv_writev+0x34b/0x850 [ 177.921725][ C1] ? finish_wait+0x154/0x220 [ 177.921726][ C1] ? new_sync_write+0x6d0/0x6d0 [ 177.921728][ C1] ? rw_verify_area+0xc3/0x2b0 [ 177.921729][ C1] do_iter_write+0x128/0x5a0 [ 177.921730][ C1] ? kmalloc_order+0xc5/0x100 [ 177.921731][ C1] ? kmalloc_order_trace+0x18/0x90 [ 177.921732][ C1] vfs_iter_write+0x5a/0xb0 [ 177.921733][ C1] iter_file_splice_write+0x57e/0xbb0 [ 177.921735][ C1] ? generic_splice_sendpage+0x130/0x130 [ 177.921736][ C1] ? selinux_file_permission+0x2f1/0x3f0 [ 177.921737][ C1] ? rw_verify_area+0xc3/0x2b0 [ 177.921738][ C1] do_splice+0xa86/0x2050 [ 177.921739][ C1] ? preempt_count_add+0x7a/0x160 [ 177.921740][ C1] ? splice_from_pipe+0x140/0x140 [ 177.921742][ C1] ? build_open_flags+0x470/0x470 [ 177.921743][ C1] ? preempt_count_add+0x7a/0x160 [ 177.921744][ C1] __do_splice+0x113/0x1e0 [ 177.921745][ C1] ? do_splice+0x2050/0x2050 [ 177.921746][ C1] __x64_sys_splice+0x151/0x200 [ 177.921747][ C1] do_syscall_64+0x32/0x80 [ 177.921749][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 177.921750][ C1] RIP: 0033:0x7fbe40220049 [ 177.921752][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 177.921754][ C1] RSP: 002b:00007fbe40196168 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 177.921756][ C1] RAX: ffffffffffffffda RBX: 00007fbe40332f60 RCX: 00007fbe40220049 [ 177.921758][ C1] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000004 [ 177.921759][ C1] RBP: 00007fbe4027a08d R08: 00000000088000cc R09: 0000000000000000 [ 177.921761][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 177.921762][ C1] R13: 00007ffcf0cdf26f R14: 00007fbe40196300 R15: 0000000000022000 [ 198.310982][ T25] INFO: task syz-executor.3:444 blocked for more than 146 seconds. [ 198.318893][ T25] Not tainted 5.10.110-syzkaller #0 [ 198.340786][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 198.349454][ T25] task:syz-executor.3 state:D stack: 0 pid: 444 ppid: 413 flags:0x00000004 [ 198.400787][ T25] Call Trace: [ 198.404094][ T25] __schedule+0x6e4/0x1910 [ 198.408489][ T25] ? io_schedule_timeout+0x150/0x150 [ 198.440834][ T25] ? __kasan_check_write+0x14/0x20 [ 198.445963][ T25] ? __mutex_add_waiter+0x25a/0x2f0 [ 198.470977][ T25] ? mutex_spin_on_owner+0x260/0x260 [ 198.476267][ T25] schedule+0xdb/0x270 [ 198.480314][ T25] schedule_preempt_disabled+0x13/0x20 [ 198.510790][ T25] __mutex_lock.constprop.0+0x34b/0xd00 [ 198.516328][ T25] ? ww_mutex_lock+0x1b0/0x1b0 [ 198.540795][ T25] ? current_time+0x6d/0x200 [ 198.545373][ T25] ? generic_update_time+0x17c/0x290 [ 198.550629][ T25] ? preempt_count_add+0x7a/0x160 [ 198.570804][ T25] __mutex_lock_slowpath+0xe/0x10 [ 198.575825][ T25] mutex_lock+0xc2/0xd0 [ 198.579955][ T25] ? __mutex_lock_slowpath+0x10/0x10 [ 198.600792][ T25] ? avc_has_perm+0x121/0x290 [ 198.605452][ T25] ? avc_has_perm_noaudit+0x210/0x210 [ 198.640796][ T25] pipe_write+0x117/0x1930 [ 198.645204][ T25] ? kasan_print_address_stack_frame+0xe1/0x110 [ 198.663710][ T25] ? anon_pipe_buf_try_steal+0x140/0x140 [ 198.669326][ T25] ? inode_has_perm+0x142/0x220 [ 198.700792][ T25] ? _raw_spin_unlock_irqrestore+0x47/0x80 [ 198.706581][ T25] ? file_has_perm+0x24c/0x360 [ 198.720783][ T25] ? __wake_up_common+0x5a0/0x5a0 [ 198.725787][ T25] new_sync_write+0x49b/0x6d0 [ 198.730434][ T25] ? futex_exit_release+0x200/0x200 [ 198.750781][ T25] ? kfree+0xc2/0x4e0 [ 198.754742][ T25] ? new_sync_read+0x6d0/0x6d0 [ 198.759480][ T25] ? fsnotify_handle_inode_event.isra.0+0x2a0/0x2a0 [ 198.780781][ T25] ? rw_verify_area+0xc3/0x2b0 [ 198.785686][ T25] ? __fget_light.part.0+0x19d/0x330 [ 198.810783][ T25] vfs_write+0x4f5/0x750 [ 198.815021][ T25] ksys_write+0x192/0x210 [ 198.819325][ T25] ? __fget_light.part.0+0x19d/0x330 [ 198.850784][ T25] ? __ia32_sys_read+0xa0/0xa0 [ 198.855537][ T25] ? __kasan_check_write+0x14/0x20 [ 198.860625][ T25] ? switch_fpu_return+0xc3/0x1c0 [ 198.900785][ T25] __x64_sys_write+0x6e/0xb0 [ 198.905366][ T25] ? syscall_exit_to_user_mode+0x27/0x160 [ 198.920784][ T25] do_syscall_64+0x32/0x80 [ 198.925179][ T25] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 198.940800][ T25] RIP: 0033:0x7fbe40220049 [ 198.945196][ T25] RSP: 002b:00007fbe40175168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 198.960789][ T25] RAX: ffffffffffffffda RBX: 00007fbe40333030 RCX: 00007fbe40220049 [ 198.968742][ T25] RDX: 00000000ffffff14 RSI: 0000000020000240 RDI: 0000000000000005 [ 199.010780][ T25] RBP: 00007fbe4027a08d R08: 0000000000000000 R09: 0000000000000000 [ 199.018740][ T25] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 199.050780][ T25] R13: 00007ffcf0cdf26f R14: 00007fbe40175300 R15: 0000000000022000 [ 199.080784][ T25] INFO: task syz-executor.5:445 blocked for more than 147 seconds. [ 199.088660][ T25] Not tainted 5.10.110-syzkaller #0 [ 199.120776][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 199.129431][ T25] task:syz-executor.5 state:D stack: 0 pid: 445 ppid: 414 flags:0x00000004 [ 199.150783][ T25] Call Trace: [ 199.154054][ T25] __schedule+0x6e4/0x1910 [ 199.158444][ T25] ? io_schedule_timeout+0x150/0x150 [ 199.190784][ T25] ? __kasan_check_write+0x14/0x20 [ 199.195880][ T25] ? __mutex_add_waiter+0x25a/0x2f0 [ 199.220795][ T25] ? mutex_spin_on_owner+0x260/0x260 [ 199.226084][ T25] schedule+0xdb/0x270 [ 199.230133][ T25] schedule_preempt_disabled+0x13/0x20 [ 199.260790][ T25] __mutex_lock.constprop.0+0x34b/0xd00 [ 199.266322][ T25] ? ww_mutex_lock+0x1b0/0x1b0 [ 199.280785][ T25] ? current_time+0x6d/0x200 [ 199.285395][ T25] ? generic_update_time+0x17c/0x290 [ 199.290652][ T25] ? preempt_count_add+0x7a/0x160 [ 199.310784][ T25] __mutex_lock_slowpath+0xe/0x10 [ 199.315812][ T25] mutex_lock+0xc2/0xd0 [ 199.319944][ T25] ? __mutex_lock_slowpath+0x10/0x10 [ 199.351689][ T25] ? avc_has_perm+0x121/0x290 [ 199.356363][ T25] ? avc_has_perm_noaudit+0x210/0x210 [ 199.380788][ T25] pipe_write+0x117/0x1930 [ 199.385201][ T25] ? kasan_print_address_stack_frame+0xe1/0x110 [ 199.410794][ T25] ? anon_pipe_buf_try_steal+0x140/0x140 [ 199.416422][ T25] ? inode_has_perm+0x142/0x220 [ 199.430790][ T25] ? _raw_spin_unlock_irqrestore+0x47/0x80 [ 199.436925][ T25] ? file_has_perm+0x24c/0x360 [ 199.460812][ T25] ? __wake_up_common+0x5a0/0x5a0 [ 199.465841][ T25] new_sync_write+0x49b/0x6d0 [ 199.470495][ T25] ? futex_exit_release+0x200/0x200 [ 199.500787][ T25] ? kfree+0xc2/0x4e0 [ 199.504760][ T25] ? new_sync_read+0x6d0/0x6d0 [ 199.509498][ T25] ? fsnotify_handle_inode_event.isra.0+0x2a0/0x2a0 [ 199.560800][ T25] ? rw_verify_area+0xc3/0x2b0 [ 199.565569][ T25] ? __fget_light.part.0+0x19d/0x330 [ 199.580786][ T25] vfs_write+0x4f5/0x750 [ 199.585099][ T25] ksys_write+0x192/0x210 [ 199.589403][ T25] ? __fget_light.part.0+0x19d/0x330 [ 199.600805][ T25] ? __ia32_sys_read+0xa0/0xa0 [ 199.605555][ T25] ? __kasan_check_write+0x14/0x20 [ 199.610639][ T25] ? switch_fpu_return+0xc3/0x1c0 [ 199.630799][ T25] __x64_sys_write+0x6e/0xb0 [ 199.635387][ T25] ? syscall_exit_to_user_mode+0x27/0x160 [ 199.650787][ T25] do_syscall_64+0x32/0x80 [ 199.655189][ T25] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 199.690794][ T25] RIP: 0033:0x7f906ea46049 [ 199.695200][ T25] RSP: 002b:00007f906e99b168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 199.730788][ T25] RAX: ffffffffffffffda RBX: 00007f906eb59030 RCX: 00007f906ea46049 [ 199.738778][ T25] RDX: 00000000ffffff14 RSI: 0000000020000240 RDI: 0000000000000005 [ 199.790782][ T25] RBP: 00007f906eaa008d R08: 0000000000000000 R09: 0000000000000000 [ 199.798754][ T25] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 199.830812][ T25] R13: 00007ffcad7c4d3f R14: 00007f906e99b300 R15: 0000000000022000 [ 199.850781][ T25] INFO: task syz-executor.1:447 blocked for more than 148 seconds. [ 199.858652][ T25] Not tainted 5.10.110-syzkaller #0 [ 199.880779][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 199.889435][ T25] task:syz-executor.1 state:D stack: 0 pid: 447 ppid: 407 flags:0x00000004 [ 199.930785][ T25] Call Trace: [ 199.934076][ T25] __schedule+0x6e4/0x1910 [ 199.938469][ T25] ? io_schedule_timeout+0x150/0x150 [ 199.970787][ T25] ? __kasan_check_write+0x14/0x20 [ 199.975895][ T25] ? __mutex_add_waiter+0x25a/0x2f0 [ 200.000784][ T25] ? mutex_spin_on_owner+0x260/0x260 [ 200.006237][ T25] schedule+0xdb/0x270 [ 200.010281][ T25] schedule_preempt_disabled+0x13/0x20 [ 200.040784][ T25] __mutex_lock.constprop.0+0x34b/0xd00 [ 200.046325][ T25] ? ww_mutex_lock+0x1b0/0x1b0 [ 200.070807][ T25] ? current_time+0x6d/0x200 [ 200.075483][ T25] ? generic_update_time+0x17c/0x290 [ 200.100784][ T25] ? preempt_count_add+0x7a/0x160 [ 200.105818][ T25] __mutex_lock_slowpath+0xe/0x10 [ 200.130782][ T25] mutex_lock+0xc2/0xd0 [ 200.134990][ T25] ? __mutex_lock_slowpath+0x10/0x10 [ 200.140507][ T25] ? avc_has_perm+0x121/0x290 [ 200.170782][ T25] ? avc_has_perm_noaudit+0x210/0x210 [ 200.176141][ T25] pipe_write+0x117/0x1930 [ 200.180532][ T25] ? kasan_print_address_stack_frame+0xe1/0x110 [ 200.200782][ T25] ? anon_pipe_buf_try_steal+0x140/0x140 [ 200.206399][ T25] ? inode_has_perm+0x142/0x220 [ 200.240822][ T25] ? _raw_spin_unlock_irqrestore+0x47/0x80 [ 200.246625][ T25] ? file_has_perm+0x24c/0x360 [ 200.270782][ T25] ? __wake_up_common+0x5a0/0x5a0 [ 200.275798][ T25] new_sync_write+0x49b/0x6d0 [ 200.280450][ T25] ? futex_exit_release+0x200/0x200 [ 200.310782][ T25] ? kfree+0xc2/0x4e0 [ 200.314756][ T25] ? new_sync_read+0x6d0/0x6d0 [ 200.319497][ T25] ? fsnotify_handle_inode_event.isra.0+0x2a0/0x2a0 [ 200.350782][ T25] ? rw_verify_area+0xc3/0x2b0 [ 200.355532][ T25] ? __fget_light.part.0+0x19d/0x330 [ 200.380794][ T25] vfs_write+0x4f5/0x750 [ 200.385043][ T25] ksys_write+0x192/0x210 [ 200.389354][ T25] ? __fget_light.part.0+0x19d/0x330 [ 200.430814][ T25] ? __ia32_sys_read+0xa0/0xa0 [ 200.435585][ T25] ? __kasan_check_write+0x14/0x20 [ 200.440672][ T25] ? switch_fpu_return+0xc3/0x1c0 [ 200.470807][ T25] __x64_sys_write+0x6e/0xb0 [ 200.475401][ T25] ? syscall_exit_to_user_mode+0x27/0x160 [ 200.510793][ T25] do_syscall_64+0x32/0x80 [ 200.515219][ T25] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 200.540810][ T25] RIP: 0033:0x7f4890562049 [ 200.545228][ T25] RSP: 002b:00007f48904b7168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 200.580795][ T25] RAX: ffffffffffffffda RBX: 00007f4890675030 RCX: 00007f4890562049 [ 200.588762][ T25] RDX: 00000000ffffff14 RSI: 0000000020000240 RDI: 0000000000000005 [ 200.620832][ T25] RBP: 00007f48905bc08d R08: 0000000000000000 R09: 0000000000000000 [ 200.628815][ T25] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 200.670789][ T25] R13: 00007ffc6ce62caf R14: 00007f48904b7300 R15: 0000000000022000 [ 200.700795][ T25] INFO: task syz-executor.2:452 blocked for more than 148 seconds. [ 200.708668][ T25] Not tainted 5.10.110-syzkaller #0 [ 200.720776][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 200.729419][ T25] task:syz-executor.2 state:D stack: 0 pid: 452 ppid: 411 flags:0x00000004 [ 200.760823][ T25] Call Trace: [ 200.764097][ T25] __schedule+0x6e4/0x1910 [ 200.768488][ T25] ? io_schedule_timeout+0x150/0x150 [ 200.800786][ T25] ? __kasan_check_write+0x14/0x20 [ 200.805882][ T25] ? __mutex_add_waiter+0x25a/0x2f0 [ 200.830781][ T25] ? mutex_spin_on_owner+0x260/0x260 [ 200.836046][ T25] schedule+0xdb/0x270 [ 200.840089][ T25] schedule_preempt_disabled+0x13/0x20 [ 200.860781][ T25] __mutex_lock.constprop.0+0x34b/0xd00 [ 200.866304][ T25] ? ww_mutex_lock+0x1b0/0x1b0 [ 200.880788][ T25] ? current_time+0x6d/0x200 [ 200.885538][ T25] ? generic_update_time+0x17c/0x290 [ 200.900779][ T25] ? preempt_count_add+0x7a/0x160 [ 200.905782][ T25] __mutex_lock_slowpath+0xe/0x10 [ 200.920780][ T25] mutex_lock+0xc2/0xd0 [ 200.924915][ T25] ? __mutex_lock_slowpath+0x10/0x10 [ 200.930171][ T25] ? avc_has_perm+0x121/0x290 [ 200.950779][ T25] ? avc_has_perm_noaudit+0x210/0x210 [ 200.956132][ T25] pipe_write+0x117/0x1930 [ 200.960523][ T25] ? kasan_print_address_stack_frame+0xe1/0x110 [ 201.010782][ T25] ? anon_pipe_buf_try_steal+0x140/0x140 [ 201.016399][ T25] ? inode_has_perm+0x142/0x220 [ 201.030785][ T25] ? _raw_spin_unlock_irqrestore+0x47/0x80 [ 201.036598][ T25] ? file_has_perm+0x24c/0x360 [ 201.041465][ T25] ? __wake_up_common+0x5a0/0x5a0 [ 201.046470][ T25] new_sync_write+0x49b/0x6d0 [ 201.060786][ T25] ? futex_exit_release+0x200/0x200 [ 201.065959][ T25] ? kfree+0xc2/0x4e0 [ 201.069915][ T25] ? new_sync_read+0x6d0/0x6d0 [ 201.100782][ T25] ? fsnotify_handle_inode_event.isra.0+0x2a0/0x2a0 [ 201.107350][ T25] ? rw_verify_area+0xc3/0x2b0 [ 201.130779][ T25] ? __fget_light.part.0+0x19d/0x330 [ 201.136040][ T25] vfs_write+0x4f5/0x750 [ 201.140252][ T25] ksys_write+0x192/0x210 [ 201.180780][ T25] ? __fget_light.part.0+0x19d/0x330 [ 201.186051][ T25] ? __ia32_sys_read+0xa0/0xa0 [ 201.210783][ T25] ? __kasan_check_write+0x14/0x20 [ 201.215879][ T25] ? switch_fpu_return+0xc3/0x1c0 [ 201.230781][ T25] __x64_sys_write+0x6e/0xb0 [ 201.235348][ T25] ? syscall_exit_to_user_mode+0x27/0x160 [ 201.250789][ T25] do_syscall_64+0x32/0x80 [ 201.255182][ T25] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 201.270779][ T25] RIP: 0033:0x7f40193f0049 [ 201.275170][ T25] RSP: 002b:00007f4019345168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 201.300778][ T25] RAX: ffffffffffffffda RBX: 00007f4019503030 RCX: 00007f40193f0049 [ 201.308730][ T25] RDX: 00000000ffffff14 RSI: 0000000020000240 RDI: 0000000000000005 [ 201.340781][ T25] RBP: 00007f401944a08d R08: 0000000000000000 R09: 0000000000000000 [ 201.348737][ T25] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 201.380778][ T25] R13: 00007ffc667c206f R14: 00007f4019345300 R15: 0000000000022000 [ 201.388756][ T25] NMI backtrace for cpu 0 [ 201.393087][ T25] CPU: 0 PID: 25 Comm: khungtaskd Not tainted 5.10.110-syzkaller #0 [ 201.401031][ T25] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 201.411060][ T25] Call Trace: [ 201.414327][ T25] dump_stack_lvl+0x81/0xac [ 201.418802][ T25] dump_stack+0x10/0x12 [ 201.422934][ T25] nmi_cpu_backtrace.cold+0x93/0x95 [ 201.428107][ T25] ? lapic_can_unplug_cpu+0x80/0x80 [ 201.433279][ T25] nmi_trigger_cpumask_backtrace+0x17b/0x1b0 [ 201.439237][ T25] arch_trigger_cpumask_backtrace+0x14/0x20 [ 201.445105][ T25] watchdog+0x88b/0xb10 [ 201.449248][ T25] ? reset_hung_task_detector+0x30/0x30 [ 201.454773][ T25] ? __kasan_check_read+0x11/0x20 [ 201.459778][ T25] ? __kthread_parkme+0x78/0x140 [ 201.464690][ T25] ? schedule+0xf2/0x270 [ 201.468917][ T25] ? reset_hung_task_detector+0x30/0x30 [ 201.474438][ T25] kthread+0x345/0x420 [ 201.478484][ T25] ? schedule_tail+0xe9/0x1e0 [ 201.483133][ T25] ? kthread_create_worker_on_cpu+0xd0/0xd0 [ 201.488998][ T25] ret_from_fork+0x1f/0x30 [ 201.493420][ T25] Sending NMI from CPU 0 to CPUs 1: [ 201.498825][ C1] NMI backtrace for cpu 1 [ 201.498827][ C1] CPU: 1 PID: 436 Comm: syz-executor.3 Not tainted 5.10.110-syzkaller #0 [ 201.498829][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 201.498830][ C1] RIP: 0010:bio_add_page+0x141/0x190 [ 201.498833][ C1] Code: 44 24 28 77 43 44 89 f9 89 da 4c 89 f6 4c 89 e7 e8 c4 fa ff ff 89 d8 48 ba 00 00 00 00 00 fc ff df 49 c7 44 15 00 00 00 00 00 <48> 8b 5d d0 65 48 2b 1c 25 28 00 00 00 75 24 48 83 c4 68 5b 41 5c [ 201.498834][ C1] RSP: 0018:ffffc90000a77230 EFLAGS: 00000202 [ 201.498838][ C1] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 1ffff1102166111d [ 201.498839][ C1] RDX: dffffc0000000000 RSI: ffffea00048a9a40 RDI: ffff88810b3088e8 [ 201.498841][ C1] RBP: ffffc90000a772c0 R08: ffffc90000a77258 R09: 0000000000000000 [ 201.498842][ C1] R10: ffff888125c4fff0 R11: 0000000000000000 R12: ffff88810b3088c0 [ 201.498844][ C1] R13: 1ffff9200014ee47 R14: ffffea00048a9a40 R15: 0000000000000000 [ 201.498845][ C1] FS: 00007fbe40196700(0000) GS:ffff8881f7300000(0000) knlGS:0000000000000000 [ 201.498847][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 201.498848][ C1] CR2: 00000000008de0c8 CR3: 000000010fbd5000 CR4: 00000000003506a0 [ 201.498850][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 201.498851][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 201.498852][ C1] Call Trace: [ 201.498853][ C1] ? __bio_add_page+0x410/0x410 [ 201.498854][ C1] bio_iov_iter_get_pages+0x768/0xf20 [ 201.498856][ C1] ? bio_add_pc_page+0xf0/0xf0 [ 201.498857][ C1] ? bvec_alloc+0x280/0x280 [ 201.498858][ C1] iomap_dio_bio_actor+0x681/0xe10 [ 201.498859][ C1] iomap_dio_actor+0x6b/0x480 [ 201.498860][ C1] iomap_apply+0x18e/0x620 [ 201.498861][ C1] ? __kasan_check_write+0x14/0x20 [ 201.498862][ C1] ? iomap_dio_rw+0x30/0x30 [ 201.498864][ C1] ? trace_event_raw_event_iomap_apply+0x480/0x480 [ 201.498865][ C1] ? __kasan_check_read+0x11/0x20 [ 201.498866][ C1] ? filemap_check_errors+0x56/0xf0 [ 201.498867][ C1] __iomap_dio_rw+0x659/0x1080 [ 201.498869][ C1] ? iomap_dio_rw+0x30/0x30 [ 201.498870][ C1] ? iomap_dio_bio_actor+0xe10/0xe10 [ 201.498871][ C1] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 201.498872][ C1] iomap_dio_rw+0xd/0x30 [ 201.498874][ C1] ext4_file_write_iter+0x7cf/0x1670 [ 201.498875][ C1] ? __kasan_slab_free+0x111/0x150 [ 201.498876][ C1] ? _raw_write_lock_irqsave+0xd1/0xe0 [ 201.498878][ C1] ? ext4_buffered_write_iter+0x430/0x430 [ 201.498879][ C1] ? __kasan_check_write+0x14/0x20 [ 201.498880][ C1] ? _raw_spin_lock_irqsave+0x8c/0x120 [ 201.498881][ C1] ? __mutex_lock_slowpath+0xe/0x10 [ 201.498882][ C1] do_iter_readv_writev+0x34b/0x850 [ 201.498884][ C1] ? finish_wait+0x154/0x220 [ 201.498885][ C1] ? new_sync_write+0x6d0/0x6d0 [ 201.498886][ C1] ? rw_verify_area+0xc3/0x2b0 [ 201.498887][ C1] do_iter_write+0x128/0x5a0 [ 201.498888][ C1] ? kmalloc_order+0xc5/0x100 [ 201.498890][ C1] ? kmalloc_order_trace+0x18/0x90 [ 201.498891][ C1] vfs_iter_write+0x5a/0xb0 [ 201.498892][ C1] iter_file_splice_write+0x57e/0xbb0 [ 201.498893][ C1] ? generic_splice_sendpage+0x130/0x130 [ 201.498894][ C1] ? selinux_file_permission+0x2f1/0x3f0 [ 201.498896][ C1] ? rw_verify_area+0xc3/0x2b0 [ 201.498897][ C1] do_splice+0xa86/0x2050 [ 201.498898][ C1] ? preempt_count_add+0x7a/0x160 [ 201.498899][ C1] ? splice_from_pipe+0x140/0x140 [ 201.498900][ C1] ? build_open_flags+0x470/0x470 [ 201.498902][ C1] ? preempt_count_add+0x7a/0x160 [ 201.498903][ C1] __do_splice+0x113/0x1e0 [ 201.498904][ C1] ? do_splice+0x2050/0x2050 [ 201.498905][ C1] __x64_sys_splice+0x151/0x200 [ 201.498906][ C1] do_syscall_64+0x32/0x80 [ 201.498907][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 201.498908][ C1] RIP: 0033:0x7fbe40220049 [ 201.498911][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 201.498913][ C1] RSP: 002b:00007fbe40196168 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 201.498916][ C1] RAX: ffffffffffffffda RBX: 00007fbe40332f60 RCX: 00007fbe40220049 [ 201.498917][ C1] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000004 [ 201.498919][ C1] RBP: 00007fbe4027a08d R08: 00000000088000cc R09: 0000000000000000 [ 201.498920][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 201.498922][ C1] R13: 00007ffcf0cdf26f R14: 00007fbe40196300 R15: 0000000000022000 [ 221.991049][ T25] INFO: task syz-executor.3:444 blocked for more than 170 seconds. [ 221.998984][ T25] Not tainted 5.10.110-syzkaller #0 [ 222.020770][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 222.029428][ T25] task:syz-executor.3 state:D stack: 0 pid: 444 ppid: 413 flags:0x00000004 [ 222.070767][ T25] Call Trace: [ 222.074049][ T25] __schedule+0x6e4/0x1910 [ 222.078437][ T25] ? io_schedule_timeout+0x150/0x150 [ 222.110779][ T25] ? __kasan_check_write+0x14/0x20 [ 222.115889][ T25] ? __mutex_add_waiter+0x25a/0x2f0 [ 222.140768][ T25] ? mutex_spin_on_owner+0x260/0x260 [ 222.146030][ T25] schedule+0xdb/0x270 [ 222.150067][ T25] schedule_preempt_disabled+0x13/0x20 [ 222.180770][ T25] __mutex_lock.constprop.0+0x34b/0xd00 [ 222.186303][ T25] ? ww_mutex_lock+0x1b0/0x1b0 [ 222.220772][ T25] ? current_time+0x6d/0x200 [ 222.225351][ T25] ? generic_update_time+0x17c/0x290 [ 222.230608][ T25] ? preempt_count_add+0x7a/0x160 [ 222.260774][ T25] __mutex_lock_slowpath+0xe/0x10 [ 222.265787][ T25] mutex_lock+0xc2/0xd0 [ 222.269918][ T25] ? __mutex_lock_slowpath+0x10/0x10 [ 222.310768][ T25] ? avc_has_perm+0x121/0x290 [ 222.315465][ T25] ? avc_has_perm_noaudit+0x210/0x210 [ 222.320964][ T25] pipe_write+0x117/0x1930 [ 222.325354][ T25] ? kasan_print_address_stack_frame+0xe1/0x110 [ 222.340784][ T25] ? anon_pipe_buf_try_steal+0x140/0x140 [ 222.346396][ T25] ? inode_has_perm+0x142/0x220 [ 222.360772][ T25] ? _raw_spin_unlock_irqrestore+0x47/0x80 [ 222.366556][ T25] ? file_has_perm+0x24c/0x360 [ 222.390769][ T25] ? __wake_up_common+0x5a0/0x5a0 [ 222.395778][ T25] new_sync_write+0x49b/0x6d0 [ 222.400438][ T25] ? futex_exit_release+0x200/0x200 [ 222.440770][ T25] ? kfree+0xc2/0x4e0 [ 222.444737][ T25] ? new_sync_read+0x6d0/0x6d0 [ 222.449474][ T25] ? fsnotify_handle_inode_event.isra.0+0x2a0/0x2a0 [ 222.480776][ T25] ? rw_verify_area+0xc3/0x2b0 [ 222.485529][ T25] ? __fget_light.part.0+0x19d/0x330 [ 222.510773][ T25] vfs_write+0x4f5/0x750 [ 222.514999][ T25] ksys_write+0x192/0x210 [ 222.519304][ T25] ? __fget_light.part.0+0x19d/0x330 [ 222.550769][ T25] ? __ia32_sys_read+0xa0/0xa0 [ 222.555531][ T25] ? __kasan_check_write+0x14/0x20 [ 222.560616][ T25] ? switch_fpu_return+0xc3/0x1c0 [ 222.590776][ T25] __x64_sys_write+0x6e/0xb0 [ 222.595360][ T25] ? syscall_exit_to_user_mode+0x27/0x160 [ 222.630791][ T25] do_syscall_64+0x32/0x80 [ 222.635249][ T25] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 222.650769][ T25] RIP: 0033:0x7fbe40220049 [ 222.655162][ T25] RSP: 002b:00007fbe40175168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 222.670777][ T25] RAX: ffffffffffffffda RBX: 00007fbe40333030 RCX: 00007fbe40220049 [ 222.678728][ T25] RDX: 00000000ffffff14 RSI: 0000000020000240 RDI: 0000000000000005 [ 222.700773][ T25] RBP: 00007fbe4027a08d R08: 0000000000000000 R09: 0000000000000000 [ 222.708725][ T25] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 222.750771][ T25] R13: 00007ffcf0cdf26f R14: 00007fbe40175300 R15: 0000000000022000 [ 222.758765][ T25] INFO: task syz-executor.5:445 blocked for more than 171 seconds. [ 222.790797][ T25] Not tainted 5.10.110-syzkaller #0 [ 222.796504][ T25] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 222.840771][ T25] task:syz-executor.5 state:D stack: 0 pid: 445 ppid: 414 flags:0x00000004 [ 222.849958][ T25] Call Trace: [ 222.860772][ T25] __schedule+0x6e4/0x1910 [ 222.865165][ T25] ? io_schedule_timeout+0x150/0x150 [ 222.870424][ T25] ? __kasan_check_write+0x14/0x20 [ 222.890779][ T25] ? __mutex_add_waiter+0x25a/0x2f0 [ 222.895957][ T25] ? mutex_spin_on_owner+0x260/0x260 [ 222.910768][ T25] schedule+0xdb/0x270 [ 222.914812][ T25] schedule_preempt_disabled+0x13/0x20 [ 222.920242][ T25] __mutex_lock.constprop.0+0x34b/0xd00 [ 222.940777][ T25] ? ww_mutex_lock+0x1b0/0x1b0 [ 222.945521][ T25] ? current_time+0x6d/0x200 [ 222.950080][ T25] ? generic_update_time+0x17c/0x290 [ 222.990775][ T25] ? preempt_count_add+0x7a/0x160 [ 222.995796][ T25] __mutex_lock_slowpath+0xe/0x10 [ 223.020776][ T25] mutex_lock+0xc2/0xd0 [ 223.024911][ T25] ? __mutex_lock_slowpath+0x10/0x10 [ 223.030167][ T25] ? avc_has_perm+0x121/0x290 [ 223.050775][ T25] ? avc_has_perm_noaudit+0x210/0x210 [ 223.056124][ T25] pipe_write+0x117/0x1930 [ 223.060515][ T25] ? kasan_print_address_stack_frame+0xe1/0x110 [ 223.090768][ T25] ? anon_pipe_buf_try_steal+0x140/0x140 [ 223.096383][ T25] ? inode_has_perm+0x142/0x220 [ 223.120777][ T25] ? _raw_spin_unlock_irqrestore+0x47/0x80 [ 223.126561][ T25] ? file_has_perm+0x24c/0x360 [ 223.150766][ T25] ? __wake_up_common+0x5a0/0x5a0 [ 223.155768][ T25] new_sync_write+0x49b/0x6d0 [ 223.160415][ T25] ? futex_exit_release+0x200/0x200 [ 223.190768][ T25] ? kfree+0xc2/0x4e0 [ 223.194742][ T25] ? new_sync_read+0x6d0/0x6d0 [ 223.199487][ T25] ? fsnotify_handle_inode_event.isra.0+0x2a0/0x2a0 [ 223.240770][ T25] ? rw_verify_area+0xc3/0x2b0 [ 223.245518][ T25] ? __fget_light.part.0+0x19d/0x330 [ 223.270794][ T25] vfs_write+0x4f5/0x750 [ 223.275028][ T25] ksys_write+0x192/0x210 [ 223.279327][ T25] ? __fget_light.part.0+0x19d/0x330 [ 223.300776][ T25] ? __ia32_sys_read+0xa0/0xa0 [ 223.305522][ T25] ? __kasan_check_write+0x14/0x20 [ 223.310606][ T25] ? switch_fpu_return+0xc3/0x1c0 [ 223.340770][ T25] __x64_sys_write+0x6e/0xb0 [ 223.345345][ T25] ? syscall_exit_to_user_mode+0x27/0x160 [ 223.370769][ T25] do_syscall_64+0x32/0x80 [ 223.375167][ T25] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 223.400788][ T25] RIP: 0033:0x7f906ea46049 [ 223.405195][ T25] RSP: 002b:00007f906e99b168 EFLAGS: 00000246 ORIG_RAX: 0000000000000001 [ 223.430791][ T25] RAX: ffffffffffffffda RBX: 00007f906eb59030 RCX: 00007f906ea46049 [ 223.438756][ T25] RDX: 00000000ffffff14 RSI: 0000000020000240 RDI: 0000000000000005 [ 223.490770][ T25] RBP: 00007f906eaa008d R08: 0000000000000000 R09: 0000000000000000 [ 223.498825][ T25] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 223.530788][ T25] R13: 00007ffcad7c4d3f R14: 00007f906e99b300 R15: 0000000000022000 [ 223.538784][ T25] NMI backtrace for cpu 0 [ 223.543126][ T25] CPU: 0 PID: 25 Comm: khungtaskd Not tainted 5.10.110-syzkaller #0 [ 223.551072][ T25] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.561101][ T25] Call Trace: [ 223.564369][ T25] dump_stack_lvl+0x81/0xac [ 223.568848][ T25] dump_stack+0x10/0x12 [ 223.573070][ T25] nmi_cpu_backtrace.cold+0x93/0x95 [ 223.578244][ T25] ? lapic_can_unplug_cpu+0x80/0x80 [ 223.583411][ T25] nmi_trigger_cpumask_backtrace+0x17b/0x1b0 [ 223.589360][ T25] arch_trigger_cpumask_backtrace+0x14/0x20 [ 223.595219][ T25] watchdog+0x88b/0xb10 [ 223.599339][ T25] ? reset_hung_task_detector+0x30/0x30 [ 223.604855][ T25] ? __kasan_check_read+0x11/0x20 [ 223.609851][ T25] ? __kthread_parkme+0x78/0x140 [ 223.614756][ T25] ? schedule+0xf2/0x270 [ 223.618965][ T25] ? reset_hung_task_detector+0x30/0x30 [ 223.624474][ T25] kthread+0x345/0x420 [ 223.628509][ T25] ? schedule_tail+0xe9/0x1e0 [ 223.633151][ T25] ? kthread_create_worker_on_cpu+0xd0/0xd0 [ 223.639012][ T25] ret_from_fork+0x1f/0x30 [ 223.643471][ T25] Sending NMI from CPU 0 to CPUs 1: [ 223.648845][ C1] NMI backtrace for cpu 1 [ 223.648847][ C1] CPU: 1 PID: 449 Comm: syz-executor.2 Not tainted 5.10.110-syzkaller #0 [ 223.648849][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 01/01/2011 [ 223.648851][ C1] RIP: 0010:iov_iter_advance+0x7c0/0xd20 [ 223.648854][ C1] Code: f6 41 89 d8 49 c1 e6 04 4d 01 d6 45 85 c0 0f 85 0d ff ff ff 4c 8b 45 c0 48 8b 5d b8 48 b8 00 00 00 00 00 fc ff df 48 8b 55 c8 <48> c1 ea 03 80 3c 02 00 0f 85 30 05 00 00 48 8d 7b 20 4c 89 73 18 [ 223.648855][ C1] RSP: 0018:ffffc90000b47250 EFLAGS: 00000246 [ 223.648858][ C1] RAX: dffffc0000000000 RBX: ffffc90000b47c08 RCX: 1ffff110259c76a5 [ 223.648860][ C1] RDX: ffffc90000b47c20 RSI: 0000000000000000 RDI: ffffc90000b47c08 [ 223.648862][ C1] RBP: ffffc90000b472c0 R08: ffffc90000b47c18 R09: dffffc0000000000 [ 223.648863][ C1] R10: ffff88812ca4fff0 R11: 0000000000000000 R12: 0000000000000000 [ 223.648865][ C1] R13: 0000000000000000 R14: ffff88812ca4fff0 R15: 0000000000001000 [ 223.648866][ C1] FS: 00007f4019366700(0000) GS:ffff8881f7300000(0000) knlGS:0000000000000000 [ 223.648868][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 223.648869][ C1] CR2: 00000000008de0c8 CR3: 00000001249e2000 CR4: 00000000003506a0 [ 223.648871][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 223.648872][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 223.648873][ C1] Call Trace: [ 223.648875][ C1] bio_iov_iter_get_pages+0x780/0xf20 [ 223.648876][ C1] ? bio_add_pc_page+0xf0/0xf0 [ 223.648877][ C1] ? bvec_alloc+0x280/0x280 [ 223.648879][ C1] iomap_dio_bio_actor+0x681/0xe10 [ 223.648880][ C1] iomap_dio_actor+0x6b/0x480 [ 223.648881][ C1] iomap_apply+0x18e/0x620 [ 223.648882][ C1] ? __kasan_check_write+0x14/0x20 [ 223.648883][ C1] ? iomap_dio_rw+0x30/0x30 [ 223.648885][ C1] ? trace_event_raw_event_iomap_apply+0x480/0x480 [ 223.648886][ C1] ? __kasan_check_read+0x11/0x20 [ 223.648887][ C1] ? filemap_check_errors+0x56/0xf0 [ 223.648889][ C1] __iomap_dio_rw+0x659/0x1080 [ 223.648890][ C1] ? iomap_dio_rw+0x30/0x30 [ 223.648891][ C1] ? iomap_dio_bio_actor+0xe10/0xe10 [ 223.648892][ C1] ? jbd2_buffer_abort_trigger+0x80/0x80 [ 223.648893][ C1] iomap_dio_rw+0xd/0x30 [ 223.648895][ C1] ext4_file_write_iter+0x7cf/0x1670 [ 223.648896][ C1] ? __kasan_slab_free+0x111/0x150 [ 223.648897][ C1] ? _raw_write_lock_irqsave+0xd1/0xe0 [ 223.648898][ C1] ? ext4_buffered_write_iter+0x430/0x430 [ 223.648900][ C1] ? __kasan_check_write+0x14/0x20 [ 223.648901][ C1] ? _raw_spin_lock_irqsave+0x8c/0x120 [ 223.648902][ C1] ? __mutex_lock_slowpath+0xe/0x10 [ 223.648903][ C1] do_iter_readv_writev+0x34b/0x850 [ 223.648904][ C1] ? finish_wait+0x154/0x220 [ 223.648906][ C1] ? new_sync_write+0x6d0/0x6d0 [ 223.648907][ C1] ? rw_verify_area+0xc3/0x2b0 [ 223.648908][ C1] do_iter_write+0x128/0x5a0 [ 223.648909][ C1] ? kmalloc_order+0xc5/0x100 [ 223.648910][ C1] ? kmalloc_order_trace+0x18/0x90 [ 223.648912][ C1] vfs_iter_write+0x5a/0xb0 [ 223.648913][ C1] iter_file_splice_write+0x57e/0xbb0 [ 223.648914][ C1] ? generic_splice_sendpage+0x130/0x130 [ 223.648915][ C1] ? selinux_file_permission+0x2f1/0x3f0 [ 223.648917][ C1] ? rw_verify_area+0xc3/0x2b0 [ 223.648918][ C1] do_splice+0xa86/0x2050 [ 223.648919][ C1] ? preempt_count_add+0x7a/0x160 [ 223.648920][ C1] ? splice_from_pipe+0x140/0x140 [ 223.648921][ C1] ? build_open_flags+0x470/0x470 [ 223.648923][ C1] ? preempt_count_add+0x7a/0x160 [ 223.648924][ C1] __do_splice+0x113/0x1e0 [ 223.648925][ C1] ? do_splice+0x2050/0x2050 [ 223.648926][ C1] __x64_sys_splice+0x151/0x200 [ 223.648927][ C1] do_syscall_64+0x32/0x80 [ 223.648929][ C1] entry_SYSCALL_64_after_hwframe+0x44/0xa9 [ 223.648930][ C1] RIP: 0033:0x7f40193f0049 [ 223.648933][ C1] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48 [ 223.648934][ C1] RSP: 002b:00007f4019366168 EFLAGS: 00000246 ORIG_RAX: 0000000000000113 [ 223.648937][ C1] RAX: ffffffffffffffda RBX: 00007f4019502f60 RCX: 00007f40193f0049 [ 223.648938][ C1] RDX: 0000000000000008 RSI: 0000000000000000 RDI: 0000000000000004 [ 223.648940][ C1] RBP: 00007f401944a08d R08: 00000000088000cc R09: 0000000000000000 [ 223.648942][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000 [ 223.648943][ C1] R13: 00007ffc667c206f R14: 00007f4019366300 R15: 0000000000022000 [ 224.083833][ T23] audit: type=1400 audit(1650780254.700:157): avc: denied { remove_name } for pid=142 comm="syslogd" name="messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=dir permissive=1 [ 224.170783][ T23] audit: type=1400 audit(1650780254.700:158): avc: denied { rename } for pid=142 comm="syslogd" name="messages" dev="tmpfs" ino=2 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1 [ 224.250780][ T23] audit: type=1400 audit(1650780254.700:159): avc: denied { create } for pid=142 comm="syslogd" name="messages" scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1