./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3651778853

<...>
e=1
[   62.425998][   T26] audit: type=1400 audit(1690519328.008:81): avc:  denied  { siginh } for  pid=4865 comm="sh" scontext=system_u:system_r:sshd_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[   63.452377][   T26] audit: type=1400 audit(1690519329.088:82): avc:  denied  { read } for  pid=4450 comm="syslogd" name="log" dev="sda1" ino=1915 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:var_t tclass=lnk_file permissive=1
Warning: Permanently added '10.128.1.146' (ED25519) to the list of known hosts.
execve("./syz-executor3651778853", ["./syz-executor3651778853"], 0x7fff1b319d80 /* 10 vars */) = 0
brk(NULL)                               = 0x555555d39000
brk(0x555555d39d00)                     = 0x555555d39d00
arch_prctl(ARCH_SET_FS, 0x555555d39380) = 0
set_tid_address(0x555555d39650)         = 5015
set_robust_list(0x555555d39660, 24)     = 0
rseq(0x555555d39ca0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor3651778853", 4096) = 28
getrandom("\x7c\x16\x08\xe9\x35\x80\xcb\x2c", 8, GRND_NONBLOCK) = 8
brk(NULL)                               = 0x555555d39d00
brk(0x555555d5ad00)                     = 0x555555d5ad00
brk(0x555555d5b000)                     = 0x555555d5b000
mprotect(0x7fb5a050d000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555d39650) = 5016
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555d39650) = 5017
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555d39650) = 5018
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555d39650) = 5019
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555d39650) = 5020
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555555d39650) = 5021
./strace-static-x86_64: Process 5020 attached
[pid  5020] set_robust_list(0x555555d39660, 24) = 0
[pid  5020] mkdir("./syzkaller.OwNsSI", 0700./strace-static-x86_64: Process 5021 attached
 <unfinished ...>
[pid  5021] set_robust_list(0x555555d39660, 24./strace-static-x86_64: Process 5019 attached
 <unfinished ...>
[pid  5019] set_robust_list(0x555555d39660, 24 <unfinished ...>
[pid  5021] <... set_robust_list resumed>) = 0
[pid  5021] mkdir("./syzkaller.K04B5O", 0700 <unfinished ...>
[pid  5019] <... set_robust_list resumed>) = 0
[pid  5019] mkdir("./syzkaller.d5YK2A", 0700./strace-static-x86_64: Process 5017 attached
./strace-static-x86_64: Process 5016 attached
./strace-static-x86_64: Process 5018 attached
 <unfinished ...>
[pid  5016] set_robust_list(0x555555d39660, 24 <unfinished ...>
[pid  5018] set_robust_list(0x555555d39660, 24 <unfinished ...>
[pid  5016] <... set_robust_list resumed>) = 0
[pid  5017] set_robust_list(0x555555d39660, 24 <unfinished ...>
[pid  5018] <... set_robust_list resumed>) = 0
[pid  5021] <... mkdir resumed>)        = 0
[pid  5017] <... set_robust_list resumed>) = 0
[pid  5016] mkdir("./syzkaller.QidvnR", 0700 <unfinished ...>
[pid  5019] <... mkdir resumed>)        = 0
[pid  5018] getrandom( <unfinished ...>
[pid  5017] mkdir("./syzkaller.FA9qZm", 0700 <unfinished ...>
[pid  5019] chmod("./syzkaller.d5YK2A", 0777) = 0
[pid  5018] <... getrandom resumed>"\x51\x07\xac\x03\x0e\x84\xe0\x8e", 8, GRND_NONBLOCK) = 8
[pid  5021] chmod("./syzkaller.K04B5O", 0777) = 0
[pid  5019] chdir("./syzkaller.d5YK2A" <unfinished ...>
[pid  5017] <... mkdir resumed>)        = 0
[pid  5019] <... chdir resumed>)        = 0
[pid  5021] chdir("./syzkaller.K04B5O" <unfinished ...>
[pid  5019] mkdir("./0", 0777 <unfinished ...>
[pid  5021] <... chdir resumed>)        = 0
[pid  5021] mkdir("./0", 0777 <unfinished ...>
[pid  5016] <... mkdir resumed>)        = 0
[pid  5018] mkdir("./syzkaller.dHKK8T", 0700 <unfinished ...>
[pid  5019] <... mkdir resumed>)        = 0
[pid  5021] <... mkdir resumed>)        = 0
[pid  5018] <... mkdir resumed>)        = 0
[pid  5017] chmod("./syzkaller.FA9qZm", 0777 <unfinished ...>
[pid  5016] chmod("./syzkaller.QidvnR", 0777 <unfinished ...>
[pid  5018] chmod("./syzkaller.dHKK8T", 0777 <unfinished ...>
[pid  5019] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[pid  5021] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5018] <... chmod resumed>)        = 0
[pid  5017] <... chmod resumed>)        = 0
[pid  5019] <... openat resumed>)       = 3
[pid  5018] chdir("./syzkaller.dHKK8T" <unfinished ...>
[pid  5017] chdir("./syzkaller.FA9qZm" <unfinished ...>
[pid  5016] <... chmod resumed>)        = 0
[   78.571365][   T26] audit: type=1400 audit(1690519344.208:83): avc:  denied  { write } for  pid=5012 comm="strace-static-x" path="pipe:[2006]" dev="pipefs" ino=2006 scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:sshd_t tclass=fifo_file permissive=1
[   78.600844][   T26] audit: type=1400 audit(1690519344.238:84): avc:  denied  { execmem } for  pid=5015 comm="syz-executor365" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=process permissive=1
[pid  5019] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5018] <... chdir resumed>)        = 0
[pid  5017] <... chdir resumed>)        = 0
[pid  5016] chdir("./syzkaller.QidvnR" <unfinished ...>
[pid  5021] <... openat resumed>)       = 3
[pid  5021] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
[pid  5019] close(3)                    = 0
[pid  5021] close(3)                    = 0
[pid  5021] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5020] <... mkdir resumed>)        = 0
[pid  5020] chmod("./syzkaller.OwNsSI", 0777) = 0
[pid  5019] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5020] chdir("./syzkaller.OwNsSI") = 0
[pid  5020] mkdir("./0", 0777)          = 0
[pid  5021] <... clone resumed>, child_tidptr=0x555555d39650) = 5022
[pid  5019] <... clone resumed>, child_tidptr=0x555555d39650) = 5023
[pid  5020] openat(AT_FDCWD, "/dev/loop4", O_RDWR) = 3
[pid  5020] ioctl(3, LOOP_CLR_FD)       = -1 ENXIO (No such device or address)
./strace-static-x86_64: Process 5022 attached
[pid  5022] set_robust_list(0x555555d39660, 24 <unfinished ...>
[pid  5020] close(3 <unfinished ...>
[pid  5022] <... set_robust_list resumed>) = 0
[pid  5022] chdir("./0" <unfinished ...>
[pid  5020] <... close resumed>)        = 0
[pid  5020] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5022] <... chdir resumed>)        = 0
[pid  5022] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid  5022] setpgid(0, 0)               = 0
[pid  5022] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5020] <... clone resumed>, child_tidptr=0x555555d39650) = 5024
[pid  5022] <... openat resumed>)       = 3
[pid  5022] write(3, "1000", 4)         = 4
[pid  5022] close(3)                    = 0
[pid  5022] symlink("/dev/binderfs", "./binderfs"./strace-static-x86_64: Process 5024 attached
) = 0
[pid  5024] set_robust_list(0x555555d39660, 24) = 0
[pid  5024] chdir("./0")                = 0
[pid  5022] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5024] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
./strace-static-x86_64: Process 5023 attached
[pid  5024] setpgid(0, 0 <unfinished ...>
[pid  5018] mkdir("./0", 0777 <unfinished ...>
[pid  5017] mkdir("./0", 0777 <unfinished ...>
[pid  5016] <... chdir resumed>)        = 0
[pid  5024] <... setpgid resumed>)      = 0
[pid  5024] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid  5024] write(3, "1000", 4)         = 4
[pid  5024] close(3)                    = 0
[pid  5024] symlink("/dev/binderfs", "./binderfs") = 0
[pid  5018] <... mkdir resumed>)        = 0
[pid  5024] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5017] <... mkdir resumed>)        = 0
[pid  5016] mkdir("./0", 0777 <unfinished ...>
[pid  5024] <... memfd_create resumed>) = 3
[pid  5023] set_robust_list(0x555555d39660, 24 <unfinished ...>
[pid  5018] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5024] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb598059000
[pid  5024] write(3, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072 <unfinished ...>
[pid  5023] <... set_robust_list resumed>) = 0
[pid  5018] <... openat resumed>)       = 3
[pid  5017] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5016] <... mkdir resumed>)        = 0
[pid  5024] <... write resumed>)        = 131072
[pid  5023] chdir("./0" <unfinished ...>
[pid  5018] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5017] <... openat resumed>)       = 3
[pid  5016] openat(AT_FDCWD, "/dev/loop0", O_RDWR <unfinished ...>
[pid  5024] munmap(0x7fb598059000, 131072 <unfinished ...>
[pid  5018] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5017] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5016] <... openat resumed>)       = 3
[pid  5018] close(3 <unfinished ...>
[pid  5023] <... chdir resumed>)        = 0
[pid  5017] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5016] ioctl(3, LOOP_CLR_FD <unfinished ...>
[pid  5023] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5018] <... close resumed>)        = 0
[pid  5017] close(3 <unfinished ...>
[pid  5024] <... munmap resumed>)       = 0
[pid  5016] <... ioctl resumed>)        = -1 ENXIO (No such device or address)
[pid  5017] <... close resumed>)        = 0
[pid  5018] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5016] close(3 <unfinished ...>
[pid  5023] <... prctl resumed>)        = 0
[pid  5024] openat(AT_FDCWD, "/dev/loop4", O_RDWR <unfinished ...>
[pid  5017] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5024] <... openat resumed>)       = 4
[   78.636927][   T26] audit: type=1400 audit(1690519344.268:85): avc:  denied  { read write } for  pid=5021 comm="syz-executor365" name="loop5" dev="devtmpfs" ino=653 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   78.665439][ T5022] memfd_create() without MFD_EXEC nor MFD_NOEXEC_SEAL, pid=5022 'syz-executor365'
[pid  5024] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5023] setpgid(0, 0 <unfinished ...>
[pid  5016] <... close resumed>)        = 0
./strace-static-x86_64: Process 5025 attached
[pid  5025] set_robust_list(0x555555d39660, 24 <unfinished ...>
[pid  5022] <... memfd_create resumed>) = 3
./strace-static-x86_64: Process 5026 attached
[pid  5023] <... setpgid resumed>)      = 0
[pid  5018] <... clone resumed>, child_tidptr=0x555555d39650) = 5025
[pid  5017] <... clone resumed>, child_tidptr=0x555555d39650) = 5026
[pid  5016] clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD <unfinished ...>
[pid  5025] <... set_robust_list resumed>) = 0
[pid  5022] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5026] set_robust_list(0x555555d39660, 24 <unfinished ...>
[pid  5025] chdir("./0" <unfinished ...>
[pid  5022] <... mmap resumed>)         = 0x7fb598059000
[pid  5026] <... set_robust_list resumed>) = 0
[pid  5026] chdir("./0" <unfinished ...>
[pid  5025] <... chdir resumed>)        = 0
[pid  5023] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5022] write(3, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072 <unfinished ...>
[pid  5026] <... chdir resumed>)        = 0
[pid  5025] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5026] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5025] <... prctl resumed>)        = 0
[pid  5026] <... prctl resumed>)        = 0
[pid  5025] setpgid(0, 0 <unfinished ...>
[pid  5023] <... openat resumed>)       = 3
[pid  5016] <... clone resumed>, child_tidptr=0x555555d39650) = 5027
[pid  5026] setpgid(0, 0 <unfinished ...>
[pid  5025] <... setpgid resumed>)      = 0
[pid  5023] write(3, "1000", 4./strace-static-x86_64: Process 5027 attached
 <unfinished ...>
[pid  5026] <... setpgid resumed>)      = 0
[pid  5025] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5022] <... write resumed>)        = 131072
[pid  5027] set_robust_list(0x555555d39660, 24 <unfinished ...>
[pid  5026] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5025] <... openat resumed>)       = 3
[pid  5023] <... write resumed>)        = 4
[pid  5022] munmap(0x7fb598059000, 131072 <unfinished ...>
[pid  5027] <... set_robust_list resumed>) = 0
[pid  5026] <... openat resumed>)       = 3
[pid  5025] write(3, "1000", 4 <unfinished ...>
[pid  5023] close(3 <unfinished ...>
[pid  5022] <... munmap resumed>)       = 0
[pid  5026] write(3, "1000", 4 <unfinished ...>
[pid  5025] <... write resumed>)        = 4
[pid  5022] openat(AT_FDCWD, "/dev/loop5", O_RDWR <unfinished ...>
[pid  5026] <... write resumed>)        = 4
[pid  5025] close(3 <unfinished ...>
[pid  5023] <... close resumed>)        = 0
[pid  5022] <... openat resumed>)       = 4
[pid  5026] close(3 <unfinished ...>
[pid  5025] <... close resumed>)        = 0
[pid  5023] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[   78.694301][ T5024] loop4: detected capacity change from 0 to 256
[   78.722480][ T5022] loop5: detected capacity change from 0 to 256
[pid  5022] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5027] chdir("./0" <unfinished ...>
[pid  5026] <... close resumed>)        = 0
[pid  5025] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5023] <... symlink resumed>)      = 0
[pid  5026] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5025] <... symlink resumed>)      = 0
[pid  5026] <... symlink resumed>)      = 0
[pid  5025] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5024] <... ioctl resumed>)        = 0
[pid  5026] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5025] <... memfd_create resumed>) = 3
[pid  5024] close(3 <unfinished ...>
[pid  5026] <... memfd_create resumed>) = 3
[pid  5025] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5024] <... close resumed>)        = 0
[pid  5026] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5025] <... mmap resumed>)         = 0x7fb598059000
[pid  5024] mkdir("./file0", 0777 <unfinished ...>
[pid  5026] <... mmap resumed>)         = 0x7fb598059000
[pid  5025] write(3, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072 <unfinished ...>
[pid  5024] <... mkdir resumed>)        = 0
[pid  5026] write(3, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072 <unfinished ...>
[pid  5025] <... write resumed>)        = 131072
[pid  5024] mount("/dev/loop4", "./file0", "exfat", MS_BORN, "iocharset=cp855,allow_utime=00000000000000000000004,iocharset=cp865,errors=continue,gid=0x0000000000"... <unfinished ...>
[pid  5027] <... chdir resumed>)        = 0
[pid  5026] <... write resumed>)        = 131072
[pid  5025] munmap(0x7fb598059000, 131072 <unfinished ...>
[pid  5023] memfd_create("syzkaller", 0 <unfinished ...>
[pid  5027] prctl(PR_SET_PDEATHSIG, SIGKILL <unfinished ...>
[pid  5026] munmap(0x7fb598059000, 131072 <unfinished ...>
[pid  5025] <... munmap resumed>)       = 0
[pid  5027] <... prctl resumed>)        = 0
[pid  5026] <... munmap resumed>)       = 0
[pid  5025] openat(AT_FDCWD, "/dev/loop2", O_RDWR <unfinished ...>
[pid  5023] <... memfd_create resumed>) = 3
[pid  5026] openat(AT_FDCWD, "/dev/loop1", O_RDWR <unfinished ...>
[pid  5025] <... openat resumed>)       = 4
[pid  5022] <... ioctl resumed>)        = 0
[pid  5027] setpgid(0, 0 <unfinished ...>
[pid  5026] <... openat resumed>)       = 4
[pid  5025] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5023] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5022] close(3 <unfinished ...>
[pid  5027] <... setpgid resumed>)      = 0
[pid  5026] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5025] <... ioctl resumed>)        = 0
[pid  5022] <... close resumed>)        = 0
[pid  5027] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC <unfinished ...>
[pid  5023] <... mmap resumed>)         = 0x7fb598059000
[pid  5022] mkdir("./file0", 0777 <unfinished ...>
[pid  5027] <... openat resumed>)       = 3
[pid  5022] <... mkdir resumed>)        = 0
[pid  5022] mount("/dev/loop5", "./file0", "exfat", MS_BORN, "iocharset=cp855,allow_utime=00000000000000000000004,iocharset=cp865,errors=continue,gid=0x0000000000"... <unfinished ...>
[pid  5027] write(3, "1000", 4 <unfinished ...>
[pid  5023] write(3, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072 <unfinished ...>
[pid  5026] <... ioctl resumed>)        = 0
[pid  5025] close(3 <unfinished ...>
[pid  5026] close(3 <unfinished ...>
[pid  5025] <... close resumed>)        = 0
[pid  5027] <... write resumed>)        = 4
[pid  5026] <... close resumed>)        = 0
[pid  5025] mkdir("./file0", 0777 <unfinished ...>
[pid  5027] close(3 <unfinished ...>
[pid  5026] mkdir("./file0", 0777 <unfinished ...>
[pid  5025] <... mkdir resumed>)        = 0
[pid  5023] <... write resumed>)        = 131072
[pid  5027] <... close resumed>)        = 0
[pid  5026] <... mkdir resumed>)        = 0
[pid  5025] mount("/dev/loop2", "./file0", "exfat", MS_BORN, "iocharset=cp855,allow_utime=00000000000000000000004,iocharset=cp865,errors=continue,gid=0x0000000000"... <unfinished ...>
[   78.729098][   T26] audit: type=1400 audit(1690519344.268:86): avc:  denied  { open } for  pid=5021 comm="syz-executor365" path="/dev/loop5" dev="devtmpfs" ino=653 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   78.745835][ T5024] exfat: Deprecated parameter 'utf8'
[   78.765213][ T5025] loop2: detected capacity change from 0 to 256
[   78.773122][ T5026] loop1: detected capacity change from 0 to 256
[   78.783339][ T5022] exfat: Deprecated parameter 'utf8'
[pid  5023] munmap(0x7fb598059000, 131072 <unfinished ...>
[pid  5027] symlink("/dev/binderfs", "./binderfs" <unfinished ...>
[pid  5026] mount("/dev/loop1", "./file0", "exfat", MS_BORN, "iocharset=cp855,allow_utime=00000000000000000000004,iocharset=cp865,errors=continue,gid=0x0000000000"... <unfinished ...>
[pid  5023] <... munmap resumed>)       = 0
[pid  5027] <... symlink resumed>)      = 0
[pid  5023] openat(AT_FDCWD, "/dev/loop3", O_RDWR <unfinished ...>
[   78.795613][ T5025] exfat: Deprecated parameter 'utf8'
[   78.795774][   T26] audit: type=1400 audit(1690519344.278:87): avc:  denied  { ioctl } for  pid=5019 comm="syz-executor365" path="/dev/loop3" dev="devtmpfs" ino=651 ioctlcmd=0x4c01 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:fixed_disk_device_t tclass=blk_file permissive=1
[   78.800932][ T5025] exfat: Deprecated parameter 'utf8'
[   78.808084][ T5026] exfat: Deprecated parameter 'utf8'
[pid  5027] memfd_create("syzkaller", 0) = 3
[pid  5023] <... openat resumed>)       = 4
[pid  5027] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0 <unfinished ...>
[pid  5023] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[pid  5027] <... mmap resumed>)         = 0x7fb598059000
[pid  5027] write(3, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072 <unfinished ...>
[pid  5023] <... ioctl resumed>)        = 0
[pid  5027] <... write resumed>)        = 131072
[   78.841073][ T5022] exfat: Deprecated parameter 'utf8'
[   78.853828][ T5024] exfat: Deprecated parameter 'utf8'
[   78.854869][ T5023] loop3: detected capacity change from 0 to 256
[   78.867181][   T26] audit: type=1400 audit(1690519344.388:88): avc:  denied  { mounton } for  pid=5024 comm="syz-executor365" path="/root/syzkaller.OwNsSI/0/file0" dev="sda1" ino=1944 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:user_home_t tclass=dir permissive=1
[pid  5023] close(3 <unfinished ...>
[pid  5027] munmap(0x7fb598059000, 131072 <unfinished ...>
[pid  5023] <... close resumed>)        = 0
[pid  5027] <... munmap resumed>)       = 0
[pid  5023] mkdir("./file0", 0777)      = 0
[pid  5027] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4
[pid  5027] ioctl(4, LOOP_SET_FD, 3 <unfinished ...>
[   78.895177][ T5026] exfat: Deprecated parameter 'utf8'
[   78.910596][ T5025] exFAT-fs (loop2): failed to load upcase table (idx : 0x00010000, chksum : 0xfb8363f9, utbl_chksum : 0xe619d30d)
[   78.929435][ T5027] loop0: detected capacity change from 0 to 256
[   78.936985][ T5023] exfat: Deprecated parameter 'utf8'
[pid  5023] mount("/dev/loop3", "./file0", "exfat", MS_BORN, "iocharset=cp855,allow_utime=00000000000000000000004,iocharset=cp865,errors=continue,gid=0x0000000000"... <unfinished ...>
[pid  5027] <... ioctl resumed>)        = 0
[pid  5027] close(3)                    = 0
[   78.943312][ T5023] exfat: Deprecated parameter 'utf8'
[   78.944747][ T5022] exFAT-fs (loop5): failed to load upcase table (idx : 0x00010000, chksum : 0xfb8363f9, utbl_chksum : 0xe619d30d)
[   78.961261][ T5024] exFAT-fs (loop4): failed to load upcase table (idx : 0x00010000, chksum : 0xfb8363f9, utbl_chksum : 0xe619d30d)
[pid  5027] mkdir("./file0", 0777)      = 0
[pid  5025] <... mount resumed>)        = 0
[pid  5027] mount("/dev/loop0", "./file0", "exfat", MS_BORN, "iocharset=cp855,allow_utime=00000000000000000000004,iocharset=cp865,errors=continue,gid=0x0000000000"... <unfinished ...>
[pid  5025] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5025] chdir("./file0")            = 0
[pid  5025] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5025] close(4)                    = 0
[pid  5024] <... mount resumed>)        = 0
[pid  5024] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5024] chdir("./file0")            = 0
[pid  5024] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5024] close(4)                    = 0
[pid  5024] creat("./bus", 000 <unfinished ...>
[pid  5025] creat("./bus", 000)         = 4
[   78.978043][   T26] audit: type=1400 audit(1690519344.618:89): avc:  denied  { mount } for  pid=5025 comm="syz-executor365" name="/" dev="loop2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[   79.004392][ T5027] exfat: Deprecated parameter 'utf8'
[   79.005222][ T5026] exFAT-fs (loop1): failed to load upcase table (idx : 0x00010000, chksum : 0xfb8363f9, utbl_chksum : 0xe619d30d)
[   79.013159][ T5027] exfat: Deprecated parameter 'utf8'
[pid  5025] rename("./bus", "./file0/file0" <unfinished ...>
[pid  5022] <... mount resumed>)        = 0
[pid  5024] <... creat resumed>)        = 4
[pid  5024] rename("./bus", "./file0/file0" <unfinished ...>
[pid  5022] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5022] chdir("./file0")            = 0
[pid  5022] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5022] close(4)                    = 0
[pid  5022] creat("./bus", 000)         = 4
[pid  5022] rename("./bus", "./file0/file0" <unfinished ...>
[pid  5026] <... mount resumed>)        = 0
[   79.055232][ T5023] exFAT-fs (loop3): failed to load upcase table (idx : 0x00010000, chksum : 0xfb8363f9, utbl_chksum : 0xe619d30d)
[pid  5026] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5026] chdir("./file0")            = 0
[pid  5026] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5026] close(4)                    = 0
[pid  5023] <... mount resumed>)        = 0
[pid  5026] creat("./bus", 000)         = 4
[pid  5023] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY <unfinished ...>
[pid  5026] rename("./bus", "./file0/file0" <unfinished ...>
[pid  5023] <... openat resumed>)       = 3
[pid  5023] chdir("./file0")            = 0
[pid  5023] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5023] close(4)                    = 0
[pid  5023] creat("./bus", 000)         = 4
[   79.099612][ T5027] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xfb8363f9, utbl_chksum : 0xe619d30d)
[   79.113226][   T26] audit: type=1400 audit(1690519344.678:90): avc:  denied  { write } for  pid=5024 comm="syz-executor365" name="/" dev="loop4" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[pid  5023] rename("./bus", "./file0/file0" <unfinished ...>
[pid  5027] <... mount resumed>)        = 0
[pid  5027] openat(AT_FDCWD, "./file0", O_RDONLY|O_DIRECTORY) = 3
[pid  5027] chdir("./file0")            = 0
[pid  5027] ioctl(4, LOOP_CLR_FD)       = 0
[pid  5027] close(4)                    = 0
[pid  5027] creat("./bus", 000)         = 4
[   79.229972][   T26] audit: type=1400 audit(1690519344.678:91): avc:  denied  { add_name } for  pid=5024 comm="syz-executor365" name="bus" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:unlabeled_t tclass=dir permissive=1
[   79.335675][   T26] audit: type=1400 audit(1690519344.688:92): avc:  denied  { associate } for  pid=5025 comm="syz-executor365" name="bus" scontext=root:object_r:unlabeled_t tcontext=system_u:object_r:unlabeled_t tclass=filesystem permissive=1
[pid  5027] rename("./bus", "./file0/file0" <unfinished ...>
[pid  5021] kill(-5022, SIGKILL <unfinished ...>
[pid  5019] kill(-5023, SIGKILL <unfinished ...>
[pid  5021] <... kill resumed>)         = 0
[pid  5019] <... kill resumed>)         = 0
[pid  5021] kill(5022, SIGKILL <unfinished ...>
[pid  5019] kill(5023, SIGKILL)         = 0
[pid  5021] <... kill resumed>)         = 0
[pid  5020] kill(-5024, SIGKILL)        = 0
[pid  5020] kill(5024, SIGKILL)         = 0
[pid  5018] kill(-5025, SIGKILL)        = 0
[pid  5017] kill(-5026, SIGKILL <unfinished ...>
[pid  5016] kill(-5027, SIGKILL <unfinished ...>
[pid  5018] kill(5025, SIGKILL <unfinished ...>
[pid  5017] <... kill resumed>)         = 0
[pid  5016] <... kill resumed>)         = 0
[pid  5018] <... kill resumed>)         = 0
[pid  5017] kill(5026, SIGKILL)         = 0
[pid  5016] kill(5027, SIGKILL)         = 0
[   83.930345][   T26] kauditd_printk_skb: 6 callbacks suppressed
[   83.930364][   T26] audit: type=1400 audit(1690519349.568:99): avc:  denied  { append } for  pid=4450 comm="syslogd" name="messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[   84.049137][   T26] audit: type=1400 audit(1690519349.568:100): avc:  denied  { open } for  pid=4450 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[pid  5019] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5019] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5019] getdents64(3, 0x555555d3a6f0 /* 2 entries */, 32768) = 48
[pid  5021] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5019] getdents64(3,  <unfinished ...>
[pid  5021] <... openat resumed>)       = 3
[pid  5019] <... getdents64 resumed>0x555555d3a6f0 /* 0 entries */, 32768) = 0
[pid  5021] newfstatat(3, "",  <unfinished ...>
[pid  5019] close(3 <unfinished ...>
[pid  5021] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5019] <... close resumed>)        = 0
[pid  5021] getdents64(3, 0x555555d3a6f0 /* 2 entries */, 32768) = 48
[   84.146487][   T26] audit: type=1400 audit(1690519349.568:101): avc:  denied  { getattr } for  pid=4450 comm="syslogd" path="/tmp/messages" dev="tmpfs" ino=3 scontext=system_u:system_r:syslogd_t tcontext=system_u:object_r:tmpfs_t tclass=file permissive=1
[pid  5021] getdents64(3, 0x555555d3a6f0 /* 0 entries */, 32768) = 0
[pid  5021] close(3)                    = 0
[pid  5018] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5018] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5018] getdents64(3, 0x555555d3a6f0 /* 2 entries */, 32768) = 48
[pid  5020] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY <unfinished ...>
[pid  5018] getdents64(3, 0x555555d3a6f0 /* 0 entries */, 32768) = 0
[pid  5018] close(3)                    = 0
[pid  5020] <... openat resumed>)       = 3
[pid  5017] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5020] newfstatat(3, "",  <unfinished ...>
[pid  5017] newfstatat(3, "",  <unfinished ...>
[pid  5020] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5017] <... newfstatat resumed>{st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5017] getdents64(3, 0x555555d3a6f0 /* 2 entries */, 32768) = 48
[pid  5017] getdents64(3, 0x555555d3a6f0 /* 0 entries */, 32768) = 0
[pid  5017] close(3)                    = 0
[pid  5020] getdents64(3,  <unfinished ...>
[pid  5016] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid  5016] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid  5016] getdents64(3, 0x555555d3a6f0 /* 2 entries */, 32768) = 48
[pid  5016] getdents64(3, 0x555555d3a6f0 /* 0 entries */, 32768) = 0
[pid  5016] close(3)                    = 0
[pid  5020] <... getdents64 resumed>0x555555d3a6f0 /* 2 entries */, 32768) = 48
[pid  5020] getdents64(3, 0x555555d3a6f0 /* 0 entries */, 32768) = 0
[pid  5020] close(3)                    = 0
[   91.887669][ T1142] cfg80211: failed to load regulatory.db
[  286.454493][   T27] INFO: task kworker/u4:0:9 blocked for more than 143 seconds.
[  286.462269][   T27]       Not tainted 6.5.0-rc3-syzkaller-00123-g57012c57536f #0
[  286.504452][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  286.513271][   T27] task:kworker/u4:0    state:D stack:25584 pid:9     ppid:2      flags:0x00004000
[  286.594482][   T27] Workqueue: writeback wb_workfn (flush-7:5)
[  286.600707][   T27] Call Trace:
[  286.604020][   T27]  <TASK>
[  286.644441][   T27]  __schedule+0xee1/0x59f0
[  286.649042][   T27]  ? blk_mq_try_issue_list_directly+0x590/0x590
[  286.704472][   T27]  ? __pv_queued_spin_lock_slowpath+0x272/0xc70
[  286.710816][   T27]  ? io_schedule_timeout+0x150/0x150
[  286.744444][   T27]  ? __blk_flush_plug+0x2eb/0x430
[  286.749551][   T27]  ? __mutex_lock+0x962/0x1340
[  286.754371][   T27]  ? kthread_data+0x53/0xc0
[  286.788986][   T27]  schedule+0xe7/0x1b0
[  286.793111][   T27]  schedule_preempt_disabled+0x13/0x20
[  286.824639][   T27]  __mutex_lock+0x967/0x1340
[  286.829424][   T27]  ? exfat_write_inode+0x6c/0x130
[  286.854536][   T27]  ? mutex_lock_io_nested+0x11a0/0x11a0
[  286.860172][   T27]  ? find_held_lock+0x2d/0x110
[  286.904447][   T27]  ? reacquire_held_locks+0x4b0/0x4b0
[  286.909906][   T27]  ? do_raw_spin_lock+0x12e/0x2b0
[  286.944626][   T27]  ? spin_bug+0x1d0/0x1d0
[  286.949045][   T27]  ? exfat_write_inode+0x6c/0x130
[  286.954127][   T27]  exfat_write_inode+0x6c/0x130
[  286.994485][   T27]  __writeback_single_inode+0xa81/0xe70
[  287.000129][   T27]  ? __mark_inode_dirty+0xd50/0xd50
[  287.024484][   T27]  ? _raw_spin_unlock+0x28/0x40
[  287.029438][   T27]  ? wbc_attach_and_unlock_inode+0x568/0x910
[  287.074510][   T27]  writeback_sb_inodes+0x599/0x1010
[  287.079829][   T27]  ? sync_inode_metadata+0xe0/0xe0
[  287.124460][   T27]  ? find_held_lock+0x59/0x110
[  287.129311][   T27]  ? move_expired_inodes+0x59e/0x850
[  287.154522][   T27]  __writeback_inodes_wb+0xff/0x2d0
[  287.159831][   T27]  ? writeback_sb_inodes+0x1010/0x1010
[  287.184468][   T27]  ? queue_io+0x3ed/0x4e0
[  287.188886][   T27]  wb_writeback+0x7f8/0xa90
[  287.193446][   T27]  ? __writeback_inodes_wb+0x2d0/0x2d0
[  287.224454][   T27]  ? get_nr_dirty_inodes+0x176/0x1e0
[  287.229838][   T27]  wb_workfn+0x874/0xfd0
[  287.234148][   T27]  ? inode_wait_for_writeback+0x30/0x30
[  287.284447][   T27]  ? lock_sync+0x190/0x190
[  287.288949][   T27]  ? spin_bug+0x1d0/0x1d0
[  287.293328][   T27]  process_one_work+0xaa2/0x16f0
[  287.334498][   T27]  ? lock_sync+0x190/0x190
[  287.338992][   T27]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[  287.364479][   T27]  ? spin_bug+0x1d0/0x1d0
[  287.368882][   T27]  worker_thread+0x687/0x1110
[  287.373613][   T27]  ? process_one_work+0x16f0/0x16f0
[  287.414520][   T27]  kthread+0x33a/0x430
[  287.418752][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  287.444442][   T27]  ret_from_fork+0x2c/0x70
[  287.448954][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  287.474502][   T27]  ret_from_fork_asm+0x11/0x20
[  287.479358][   T27] RIP: 0000:0x0
[  287.482854][   T27] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  287.534481][   T27] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[  287.543053][   T27] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  287.584475][   T27] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  287.592500][   T27] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  287.644439][   T27] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  287.652554][   T27] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  287.684445][   T27]  </TASK>
[  287.694770][   T27] INFO: task kworker/u4:1:11 blocked for more than 144 seconds.
[  287.702439][   T27]       Not tainted 6.5.0-rc3-syzkaller-00123-g57012c57536f #0
[  287.754435][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  287.763156][   T27] task:kworker/u4:1    state:D stack:25088 pid:11    ppid:2      flags:0x00004000
[  287.834448][   T27] Workqueue: writeback wb_workfn (flush-7:2)
[  287.840624][   T27] Call Trace:
[  287.843929][   T27]  <TASK>
[  287.864457][   T27]  __schedule+0xee1/0x59f0
[  287.868941][   T27]  ? blk_mq_try_issue_list_directly+0x590/0x590
[  287.904461][   T27]  ? io_schedule_timeout+0x150/0x150
[  287.909840][   T27]  ? __blk_flush_plug+0x2eb/0x430
[  287.934487][   T27]  ? __mutex_lock+0x962/0x1340
[  287.939325][   T27]  ? kthread_data+0x53/0xc0
[  287.943885][   T27]  schedule+0xe7/0x1b0
[  288.004450][   T27]  schedule_preempt_disabled+0x13/0x20
[  288.010001][   T27]  __mutex_lock+0x967/0x1340
[  288.054446][   T27]  ? exfat_write_inode+0x6c/0x130
[  288.059653][   T27]  ? mutex_lock_io_nested+0x11a0/0x11a0
[  288.104463][   T27]  ? find_held_lock+0x2d/0x110
[  288.109309][   T27]  ? reacquire_held_locks+0x4b0/0x4b0
[  288.144465][   T27]  ? do_raw_spin_lock+0x12e/0x2b0
[  288.149655][   T27]  ? spin_bug+0x1d0/0x1d0
[  288.154055][   T27]  ? exfat_write_inode+0x6c/0x130
[  288.194440][   T27]  exfat_write_inode+0x6c/0x130
[  288.199389][   T27]  __writeback_single_inode+0xa81/0xe70
[  288.234516][   T27]  ? __mark_inode_dirty+0xd50/0xd50
[  288.239815][   T27]  ? _raw_spin_unlock+0x28/0x40
[  288.264471][   T27]  ? wbc_attach_and_unlock_inode+0x568/0x910
[  288.270624][   T27]  writeback_sb_inodes+0x599/0x1010
[  288.294591][   T27]  ? sync_inode_metadata+0xe0/0xe0
[  288.299869][   T27]  ? find_held_lock+0x59/0x110
[  288.344442][   T27]  ? move_expired_inodes+0x59e/0x850
[  288.349904][   T27]  __writeback_inodes_wb+0xff/0x2d0
[  288.394444][   T27]  ? writeback_sb_inodes+0x1010/0x1010
[  288.400084][   T27]  ? queue_io+0x3ed/0x4e0
[  288.434447][   T27]  wb_writeback+0x7f8/0xa90
[  288.439124][   T27]  ? __writeback_inodes_wb+0x2d0/0x2d0
[  288.474457][   T27]  ? get_nr_dirty_inodes+0x176/0x1e0
[  288.479825][   T27]  wb_workfn+0x874/0xfd0
[  288.484145][   T27]  ? inode_wait_for_writeback+0x30/0x30
[  288.534443][   T27]  ? lock_sync+0x190/0x190
[  288.538950][   T27]  ? spin_bug+0x1d0/0x1d0
[  288.543332][   T27]  process_one_work+0xaa2/0x16f0
[  288.584443][   T27]  ? lock_sync+0x190/0x190
[  288.589111][   T27]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[  288.614462][   T27]  ? spin_bug+0x1d0/0x1d0
[  288.618872][   T27]  worker_thread+0x687/0x1110
[  288.623711][   T27]  ? process_one_work+0x16f0/0x16f0
[  288.654442][   T27]  kthread+0x33a/0x430
[  288.658580][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  288.664265][   T27]  ret_from_fork+0x2c/0x70
[  288.724443][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  288.730148][   T27]  ret_from_fork_asm+0x11/0x20
[  288.754502][   T27] RIP: 0000:0x0
[  288.758022][   T27] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  288.794511][   T27] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[  288.802987][   T27] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  288.844980][   T27] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  288.853015][   T27] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  288.904492][   T27] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  288.912526][   T27] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  288.944467][   T27]  </TASK>
[  288.954765][   T27] INFO: task kworker/u4:2:40 blocked for more than 145 seconds.
[  288.962435][   T27]       Not tainted 6.5.0-rc3-syzkaller-00123-g57012c57536f #0
[  289.024645][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  289.033381][   T27] task:kworker/u4:2    state:D stack:25328 pid:40    ppid:2      flags:0x00004000
[  289.074439][   T27] Workqueue: writeback wb_workfn (flush-7:4)
[  289.080624][   T27] Call Trace:
[  289.083935][   T27]  <TASK>
[  289.114436][   T27]  __schedule+0xee1/0x59f0
[  289.119017][   T27]  ? blk_mq_try_issue_list_directly+0x590/0x590
[  289.164442][   T27]  ? io_schedule_timeout+0x150/0x150
[  289.169914][   T27]  ? __blk_flush_plug+0x2eb/0x430
[  289.194488][   T27]  ? __mutex_lock+0x962/0x1340
[  289.199381][   T27]  ? kthread_data+0x53/0xc0
[  289.203951][   T27]  schedule+0xe7/0x1b0
[  289.234441][   T27]  schedule_preempt_disabled+0x13/0x20
[  289.240064][   T27]  __mutex_lock+0x967/0x1340
[  289.264494][   T27]  ? exfat_write_inode+0x6c/0x130
[  289.269706][   T27]  ? mutex_lock_io_nested+0x11a0/0x11a0
[  289.304452][   T27]  ? find_held_lock+0x2d/0x110
[  289.309324][   T27]  ? reacquire_held_locks+0x4b0/0x4b0
[  289.354444][   T27]  ? do_raw_spin_lock+0x12e/0x2b0
[  289.359560][   T27]  ? spin_bug+0x1d0/0x1d0
[  289.363943][   T27]  ? exfat_write_inode+0x6c/0x130
[  289.414441][   T27]  exfat_write_inode+0x6c/0x130
[  289.419563][   T27]  __writeback_single_inode+0xa81/0xe70
[  289.454461][   T27]  ? __mark_inode_dirty+0xd50/0xd50
[  289.459750][   T27]  ? _raw_spin_unlock+0x28/0x40
[  289.494461][   T27]  ? wbc_attach_and_unlock_inode+0x568/0x910
[  289.500628][   T27]  writeback_sb_inodes+0x599/0x1010
[  289.524467][   T27]  ? sync_inode_metadata+0xe0/0xe0
[  289.529650][   T27]  ? find_held_lock+0x59/0x110
[  289.554476][   T27]  ? move_expired_inodes+0x59e/0x850
[  289.559949][   T27]  __writeback_inodes_wb+0xff/0x2d0
[  289.604447][   T27]  ? writeback_sb_inodes+0x1010/0x1010
[  289.610090][   T27]  ? queue_io+0x3ed/0x4e0
[  289.644554][   T27]  wb_writeback+0x7f8/0xa90
[  289.649183][   T27]  ? __writeback_inodes_wb+0x2d0/0x2d0
[  289.684445][   T27]  ? get_nr_dirty_inodes+0x176/0x1e0
[  289.689836][   T27]  wb_workfn+0x874/0xfd0
[  289.694140][   T27]  ? inode_wait_for_writeback+0x30/0x30
[  289.734451][   T27]  ? lock_sync+0x190/0x190
[  289.738978][   T27]  ? spin_bug+0x1d0/0x1d0
[  289.743363][   T27]  process_one_work+0xaa2/0x16f0
[  289.794534][   T27]  ? lock_sync+0x190/0x190
[  289.799126][   T27]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[  289.824450][   T27]  ? spin_bug+0x1d0/0x1d0
[  289.828861][   T27]  worker_thread+0x687/0x1110
[  289.833592][   T27]  ? process_one_work+0x16f0/0x16f0
[  289.864471][   T27]  kthread+0x33a/0x430
[  289.868618][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  289.874322][   T27]  ret_from_fork+0x2c/0x70
[  289.914509][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  289.920218][   T27]  ret_from_fork_asm+0x11/0x20
[  289.944483][   T27] RIP: 0000:0x0
[  289.948001][   T27] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  290.004442][   T27] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[  290.012942][   T27] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  290.074437][   T27] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  290.082480][   T27] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  290.114449][   T27] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  290.122485][   T27] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  290.174509][   T27]  </TASK>
[  290.177628][   T27] INFO: task kworker/u4:3:51 blocked for more than 147 seconds.
[  290.214469][   T27]       Not tainted 6.5.0-rc3-syzkaller-00123-g57012c57536f #0
[  290.222066][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  290.274439][   T27] task:kworker/u4:3    state:D stack:26960 pid:51    ppid:2      flags:0x00004000
[  290.283727][   T27] Workqueue: writeback wb_workfn (flush-7:3)
[  290.314437][   T27] Call Trace:
[  290.317780][   T27]  <TASK>
[  290.320830][   T27]  __schedule+0xee1/0x59f0
[  290.364440][   T27]  ? blk_mq_try_issue_list_directly+0x590/0x590
[  290.370859][   T27]  ? io_schedule_timeout+0x150/0x150
[  290.424492][   T27]  ? __blk_flush_plug+0x2eb/0x430
[  290.429691][   T27]  ? __mutex_lock+0x962/0x1340
[  290.464442][   T27]  ? kthread_data+0x53/0xc0
[  290.469036][   T27]  schedule+0xe7/0x1b0
[  290.473150][   T27]  schedule_preempt_disabled+0x13/0x20
[  290.514441][   T27]  __mutex_lock+0x967/0x1340
[  290.519203][   T27]  ? exfat_write_inode+0x6c/0x130
[  290.524281][   T27]  ? mutex_lock_io_nested+0x11a0/0x11a0
[  290.564441][   T27]  ? find_held_lock+0x2d/0x110
[  290.569282][   T27]  ? reacquire_held_locks+0x4b0/0x4b0
[  290.604529][   T27]  ? do_raw_spin_lock+0x12e/0x2b0
[  290.609639][   T27]  ? spin_bug+0x1d0/0x1d0
[  290.614020][   T27]  ? exfat_write_inode+0x6c/0x130
[  290.664471][   T27]  exfat_write_inode+0x6c/0x130
[  290.669410][   T27]  __writeback_single_inode+0xa81/0xe70
[  290.714437][   T27]  ? __mark_inode_dirty+0xd50/0xd50
[  290.719727][   T27]  ? _raw_spin_unlock+0x28/0x40
[  290.744433][   T27]  ? wbc_attach_and_unlock_inode+0x568/0x910
[  290.750610][   T27]  writeback_sb_inodes+0x599/0x1010
[  290.774460][   T27]  ? sync_inode_metadata+0xe0/0xe0
[  290.779649][   T27]  ? find_held_lock+0x59/0x110
[  290.804462][   T27]  ? move_expired_inodes+0x59e/0x850
[  290.809834][   T27]  __writeback_inodes_wb+0xff/0x2d0
[  290.844874][   T27]  ? writeback_sb_inodes+0x1010/0x1010
[  290.850422][   T27]  ? queue_io+0x3ed/0x4e0
[  290.884437][   T27]  wb_writeback+0x7f8/0xa90
[  290.889033][   T27]  ? __writeback_inodes_wb+0x2d0/0x2d0
[  290.914437][   T27]  ? get_nr_dirty_inodes+0x176/0x1e0
[  290.919801][   T27]  wb_workfn+0x874/0xfd0
[  290.924105][   T27]  ? inode_wait_for_writeback+0x30/0x30
[  290.974456][   T27]  ? lock_sync+0x190/0x190
[  290.979035][   T27]  ? spin_bug+0x1d0/0x1d0
[  290.983435][   T27]  process_one_work+0xaa2/0x16f0
[  291.014467][   T27]  ? lock_sync+0x190/0x190
[  291.018974][   T27]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[  291.054499][   T27]  ? spin_bug+0x1d0/0x1d0
[  291.059007][   T27]  worker_thread+0x687/0x1110
[  291.063746][   T27]  ? process_one_work+0x16f0/0x16f0
[  291.104542][   T27]  kthread+0x33a/0x430
[  291.108788][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  291.154472][   T27]  ret_from_fork+0x2c/0x70
[  291.159059][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  291.184487][   T27]  ret_from_fork_asm+0x11/0x20
[  291.189331][   T27] RIP: 0000:0x0
[  291.192828][   T27] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  291.224652][   T27] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[  291.233214][   T27] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  291.304459][   T27] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  291.312493][   T27] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  291.354444][   T27] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  291.362472][   T27] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  291.424495][   T27]  </TASK>
[  291.434782][   T27] INFO: task kworker/u4:5:1111 blocked for more than 148 seconds.
[  291.442629][   T27]       Not tainted 6.5.0-rc3-syzkaller-00123-g57012c57536f #0
[  291.504452][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  291.513177][   T27] task:kworker/u4:5    state:D stack:26960 pid:1111  ppid:2      flags:0x00004000
[  291.554470][   T27] Workqueue: writeback wb_workfn (flush-7:1)
[  291.560559][   T27] Call Trace:
[  291.563864][   T27]  <TASK>
[  291.594434][   T27]  __schedule+0xee1/0x59f0
[  291.598926][   T27]  ? blk_mq_try_issue_list_directly+0x590/0x590
[  291.634440][   T27]  ? io_schedule_timeout+0x150/0x150
[  291.639798][   T27]  ? __blk_flush_plug+0x2eb/0x430
[  291.674457][   T27]  ? __mutex_lock+0x962/0x1340
[  291.679400][   T27]  ? kthread_data+0x53/0xc0
[  291.683967][   T27]  schedule+0xe7/0x1b0
[  291.714436][   T27]  schedule_preempt_disabled+0x13/0x20
[  291.719968][   T27]  __mutex_lock+0x967/0x1340
[  291.744434][   T27]  ? exfat_write_inode+0x6c/0x130
[  291.749527][   T27]  ? mutex_lock_io_nested+0x11a0/0x11a0
[  291.784434][   T27]  ? find_held_lock+0x2d/0x110
[  291.789446][   T27]  ? reacquire_held_locks+0x4b0/0x4b0
[  291.824455][   T27]  ? do_raw_spin_lock+0x12e/0x2b0
[  291.829551][   T27]  ? spin_bug+0x1d0/0x1d0
[  291.833930][   T27]  ? exfat_write_inode+0x6c/0x130
[  291.864455][   T27]  exfat_write_inode+0x6c/0x130
[  291.869389][   T27]  __writeback_single_inode+0xa81/0xe70
[  291.904455][   T27]  ? __mark_inode_dirty+0xd50/0xd50
[  291.909834][   T27]  ? _raw_spin_unlock+0x28/0x40
[  291.954462][   T27]  ? wbc_attach_and_unlock_inode+0x568/0x910
[  291.960634][   T27]  writeback_sb_inodes+0x599/0x1010
[  291.984492][   T27]  ? sync_inode_metadata+0xe0/0xe0
[  291.989706][   T27]  ? find_held_lock+0x59/0x110
[  292.024474][   T27]  ? move_expired_inodes+0x59e/0x850
[  292.029859][   T27]  __writeback_inodes_wb+0xff/0x2d0
[  292.054473][   T27]  ? writeback_sb_inodes+0x1010/0x1010
[  292.060113][   T27]  ? queue_io+0x3ed/0x4e0
[  292.084437][   T27]  wb_writeback+0x7f8/0xa90
[  292.089029][   T27]  ? __writeback_inodes_wb+0x2d0/0x2d0
[  292.124439][   T27]  ? get_nr_dirty_inodes+0x176/0x1e0
[  292.129814][   T27]  wb_workfn+0x874/0xfd0
[  292.134117][   T27]  ? inode_wait_for_writeback+0x30/0x30
[  292.174443][   T27]  ? lock_sync+0x190/0x190
[  292.178965][   T27]  ? spin_bug+0x1d0/0x1d0
[  292.183372][   T27]  process_one_work+0xaa2/0x16f0
[  292.244627][   T27]  ? lock_sync+0x190/0x190
[  292.249129][   T27]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[  292.274443][   T27]  ? spin_bug+0x1d0/0x1d0
[  292.278848][   T27]  worker_thread+0x687/0x1110
[  292.283575][   T27]  ? __kthread_parkme+0x152/0x220
[  292.314474][   T27]  ? process_one_work+0x16f0/0x16f0
[  292.319743][   T27]  kthread+0x33a/0x430
[  292.323852][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  292.374545][   T27]  ret_from_fork+0x2c/0x70
[  292.379035][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  292.414445][   T27]  ret_from_fork_asm+0x11/0x20
[  292.419289][   T27] RIP: 0000:0x0
[  292.422785][   T27] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  292.474440][   T27] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[  292.482923][   T27] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  292.514438][   T27] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  292.522466][   T27] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  292.584436][   T27] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  292.592560][   T27] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  292.634623][   T27]  </TASK>
[  292.637767][   T27] INFO: task kworker/u4:6:5031 blocked for more than 149 seconds.
[  292.684520][   T27]       Not tainted 6.5.0-rc3-syzkaller-00123-g57012c57536f #0
[  292.692116][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  292.744438][   T27] task:kworker/u4:6    state:D stack:26960 pid:5031  ppid:2      flags:0x00004000
[  292.753710][   T27] Workqueue: writeback wb_workfn (flush-7:0)
[  292.804440][   T27] Call Trace:
[  292.807783][   T27]  <TASK>
[  292.810745][   T27]  __schedule+0xee1/0x59f0
[  292.834440][   T27]  ? blk_mq_try_issue_list_directly+0x590/0x590
[  292.840758][   T27]  ? io_schedule_timeout+0x150/0x150
[  292.874439][   T27]  ? __blk_flush_plug+0x2eb/0x430
[  292.879631][   T27]  ? __mutex_lock+0x962/0x1340
[  292.914452][   T27]  ? kthread_data+0x53/0xc0
[  292.919040][   T27]  schedule+0xe7/0x1b0
[  292.923164][   T27]  schedule_preempt_disabled+0x13/0x20
[  292.954474][   T27]  __mutex_lock+0x967/0x1340
[  292.959154][   T27]  ? exfat_write_inode+0x6c/0x130
[  292.964236][   T27]  ? mutex_lock_io_nested+0x11a0/0x11a0
[  292.994655][   T27]  ? find_held_lock+0x2d/0x110
[  292.999507][   T27]  ? reacquire_held_locks+0x4b0/0x4b0
[  293.044440][   T27]  ? do_raw_spin_lock+0x12e/0x2b0
[  293.049545][   T27]  ? spin_bug+0x1d0/0x1d0
[  293.053925][   T27]  ? exfat_write_inode+0x6c/0x130
[  293.104479][   T27]  exfat_write_inode+0x6c/0x130
[  293.109428][   T27]  __writeback_single_inode+0xa81/0xe70
[  293.144439][   T27]  ? __mark_inode_dirty+0xd50/0xd50
[  293.149724][   T27]  ? _raw_spin_unlock+0x28/0x40
[  293.184464][   T27]  ? wbc_attach_and_unlock_inode+0x568/0x910
[  293.190552][   T27]  writeback_sb_inodes+0x599/0x1010
[  293.224617][   T27]  ? sync_inode_metadata+0xe0/0xe0
[  293.229830][   T27]  ? find_held_lock+0x59/0x110
[  293.274447][   T27]  ? move_expired_inodes+0x59e/0x850
[  293.279820][   T27]  __writeback_inodes_wb+0xff/0x2d0
[  293.304490][   T27]  ? writeback_sb_inodes+0x1010/0x1010
[  293.310022][   T27]  ? queue_io+0x3ed/0x4e0
[  293.334464][   T27]  wb_writeback+0x7f8/0xa90
[  293.339049][   T27]  ? __writeback_inodes_wb+0x2d0/0x2d0
[  293.364499][   T27]  ? get_nr_dirty_inodes+0x176/0x1e0
[  293.369861][   T27]  wb_workfn+0x874/0xfd0
[  293.374168][   T27]  ? inode_wait_for_writeback+0x30/0x30
[  293.414480][   T27]  ? lock_sync+0x190/0x190
[  293.418986][   T27]  process_one_work+0xaa2/0x16f0
[  293.423973][   T27]  ? lock_sync+0x190/0x190
[  293.454478][   T27]  ? pwq_dec_nr_in_flight+0x2a0/0x2a0
[  293.459928][   T27]  ? spin_bug+0x1d0/0x1d0
[  293.464311][   T27]  worker_thread+0x687/0x1110
[  293.524466][   T27]  ? __kthread_parkme+0x152/0x220
[  293.529584][   T27]  ? process_one_work+0x16f0/0x16f0
[  293.554445][   T27]  kthread+0x33a/0x430
[  293.558584][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  293.564260][   T27]  ret_from_fork+0x2c/0x70
[  293.594443][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  293.600142][   T27]  ret_from_fork_asm+0x11/0x20
[  293.634467][   T27] RIP: 0000:0x0
[  293.637984][   T27] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  293.664439][   T27] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[  293.672916][   T27] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  293.724536][   T27] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  293.732582][   T27] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  293.774439][   T27] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  293.782473][   T27] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  293.844497][   T27]  </TASK>
[  293.854451][   T27] 
[  293.854451][   T27] Showing all locks held in the system:
[  293.862204][   T27] 4 locks held by kworker/u4:0/9:
[  293.904444][   T27]  #0: ffff8880136eb938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x96a/0x16f0
[  293.934457][   T27]  #1: ffffc900002ffd80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x99e/0x16f0
[  293.974437][   T27]  #2: ffff8880796700e0 (&type->s_umount_key#58){.+.+}-{3:3}, at: trylock_super+0x1c/0x100
[  294.014442][   T27]  #3: ffff8880197000e0 (&sbi->s_lock){+.+.}-{3:3}, at: exfat_write_inode+0x6c/0x130
[  294.024050][   T27] 4 locks held by kworker/u4:1/11:
[  294.054462][   T27]  #0: ffff8880136eb938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x96a/0x16f0
[  294.084451][   T27]  #1: ffffc9000031fd80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x99e/0x16f0
[  294.134439][   T27]  #2: ffff888018f080e0 (&type->s_umount_key#58){.+.+}-{3:3}, at: trylock_super+0x1c/0x100
[  294.184476][   T27]  #3: ffff888019ba80e0 (&sbi->s_lock){+.+.}-{3:3}, at: exfat_write_inode+0x6c/0x130
[  294.194206][   T27] 1 lock held by rcu_tasks_kthre/12:
[  294.234464][   T27]  #0: ffffffff8c9a2730 (rcu_tasks.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x2c/0xe20
[  294.284447][   T27] 1 lock held by rcu_tasks_trace/13:
[  294.289800][   T27]  #0: ffffffff8c9a2430 (rcu_tasks_trace.tasks_gp_mutex){+.+.}-{3:3}, at: rcu_tasks_one_gp+0x2c/0xe20
[  294.344451][   T27] 1 lock held by khungtaskd/27:
[  294.349366][   T27]  #0: ffffffff8c9a3340 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x55/0x340
[  294.394442][   T27] 4 locks held by kworker/u4:2/40:
[  294.399697][   T27]  #0: ffff8880136eb938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x96a/0x16f0
[  294.454439][   T27]  #1: ffffc90000d1fd80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x99e/0x16f0
[  294.494439][   T27]  #2: ffff88801f0140e0 (&type->s_umount_key#58){.+.+}-{3:3}, at: trylock_super+0x1c/0x100
[  294.524440][   T27]  #3: ffff888079a100e0 (&sbi->s_lock){+.+.}-{3:3}, at: exfat_write_inode+0x6c/0x130
[  294.534051][   T27] 4 locks held by kworker/u4:3/51:
[  294.584450][   T27]  #0: ffff8880136eb938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x96a/0x16f0
[  294.614437][   T27]  #1: ffffc90000dcfd80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x99e/0x16f0
[  294.654499][   T27]  #2: ffff88801ebb20e0 (&type->s_umount_key#58){.+.+}-{3:3}, at: trylock_super+0x1c/0x100
[  294.694467][   T27]  #3: ffff88802cd4e0e0 (&sbi->s_lock){+.+.}-{3:3}, at: exfat_write_inode+0x6c/0x130
[  294.704088][   T27] 4 locks held by kworker/u4:5/1111:
[  294.754439][   T27]  #0: ffff8880136eb938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x96a/0x16f0
[  294.784441][   T27]  #1: ffffc900057ffd80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x99e/0x16f0
[  294.824483][   T27]  #2: ffff88807906a0e0 (&type->s_umount_key#58){.+.+}-{3:3}, at: trylock_super+0x1c/0x100
[  294.854442][   T27]  #3: ffff88801778c0e0 (&sbi->s_lock){+.+.}-{3:3}, at: exfat_write_inode+0x6c/0x130
[  294.864076][   T27] 2 locks held by getty/4768:
[  294.914442][   T27]  #0: ffff88814ba35098 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[  294.924367][   T27]  #1: ffffc900020382f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfcb/0x1480
[  294.984491][   T27] 6 locks held by syz-executor365/5022:
[  294.990111][   T27] 6 locks held by syz-executor365/5023:
[  295.024508][   T27] 6 locks held by syz-executor365/5024:
[  295.030119][   T27] 6 locks held by syz-executor365/5025:
[  295.074451][   T27] 6 locks held by syz-executor365/5026:
[  295.080054][   T27] 6 locks held by syz-executor365/5027:
[  295.104488][   T27] 4 locks held by kworker/u4:6/5031:
[  295.109821][   T27]  #0: ffff8880136eb938 ((wq_completion)writeback){+.+.}-{0:0}, at: process_one_work+0x96a/0x16f0
[  295.154438][   T27]  #1: ffffc9000350fd80 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_one_work+0x99e/0x16f0
[  295.194468][   T27]  #2: ffff88807a5340e0 (&type->s_umount_key#58){.+.+}-{3:3}, at: trylock_super+0x1c/0x100
[  295.244490][   T27]  #3: ffff8880210920e0 (&sbi->s_lock){+.+.}-{3:3}, at: exfat_write_inode+0x6c/0x130
[  295.284464][   T27] 
[  295.286850][   T27] =============================================
[  295.286850][   T27] 
[  295.324446][   T27] NMI backtrace for cpu 1
[  295.328826][   T27] CPU: 1 PID: 27 Comm: khungtaskd Not tainted 6.5.0-rc3-syzkaller-00123-g57012c57536f #0
[  295.338755][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  295.348842][   T27] Call Trace:
[  295.352157][   T27]  <TASK>
[  295.355212][   T27]  dump_stack_lvl+0xd9/0x1b0
[  295.359887][   T27]  nmi_cpu_backtrace+0x277/0x380
[  295.364893][   T27]  ? lapic_can_unplug_cpu+0xa0/0xa0
[  295.370251][   T27]  nmi_trigger_cpumask_backtrace+0x2ac/0x310
[  295.376301][   T27]  watchdog+0xf29/0x11b0
[  295.380628][   T27]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  295.386669][   T27]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  295.392710][   T27]  kthread+0x33a/0x430
[  295.396820][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  295.402496][   T27]  ret_from_fork+0x2c/0x70
[  295.406959][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  295.412636][   T27]  ret_from_fork_asm+0x11/0x20
[  295.417460][   T27] RIP: 0000:0x0
[  295.420961][   T27] Code: Unable to access opcode bytes at 0xffffffffffffffd6.
[  295.428351][   T27] RSP: 0000:0000000000000000 EFLAGS: 00000000 ORIG_RAX: 0000000000000000
[  295.436802][   T27] RAX: 0000000000000000 RBX: 0000000000000000 RCX: 0000000000000000
[  295.444808][   T27] RDX: 0000000000000000 RSI: 0000000000000000 RDI: 0000000000000000
[  295.452807][   T27] RBP: 0000000000000000 R08: 0000000000000000 R09: 0000000000000000
[  295.460813][   T27] R10: 0000000000000000 R11: 0000000000000000 R12: 0000000000000000
[  295.468816][   T27] R13: 0000000000000000 R14: 0000000000000000 R15: 0000000000000000
[  295.476823][   T27]  </TASK>
[  295.479974][   T27] Sending NMI from CPU 1 to CPUs 0:
[  295.485242][    C0] NMI backtrace for cpu 0
[  295.485254][    C0] CPU: 0 PID: 5027 Comm: syz-executor365 Not tainted 6.5.0-rc3-syzkaller-00123-g57012c57536f #0
[  295.485281][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  295.485295][    C0] RIP: 0010:__sanitizer_cov_trace_const_cmp4+0x0/0x20
[  295.485339][    C0] Code: d6 fe ff ff 66 0f 1f 44 00 00 f3 0f 1e fa 48 8b 0c 24 0f b7 d6 0f b7 f7 bf 03 00 00 00 e9 b8 fe ff ff 0f 1f 84 00 00 00 00 00 <f3> 0f 1e fa 48 8b 0c 24 89 f2 89 fe bf 05 00 00 00 e9 9a fe ff ff
[  295.485363][    C0] RSP: 0018:ffffc900034ff948 EFLAGS: 00000246
[  295.485381][    C0] RAX: dffffc0000000000 RBX: 000000001f1b0178 RCX: 0000000000000000
[  295.485397][    C0] RDX: 1ffff1100f4a68c5 RSI: 000000001f1b0178 RDI: 0000000000000001
[  295.485412][    C0] RBP: ffff888021092000 R08: 0000000000000004 R09: 000000000001f1b0
[  295.485427][    C0] R10: 000000000001f1b0 R11: 0000000000000000 R12: ffff88807a534000
[  295.485442][    C0] R13: 0000000000000000 R14: 0000000000000000 R15: 000000000001f1b0
[  295.485456][    C0] FS:  0000555555d39380(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[  295.485481][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  295.485497][    C0] CR2: ffffffffffffffd6 CR3: 000000007dc60000 CR4: 00000000003506f0
[  295.485513][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  295.485527][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  295.485542][    C0] Call Trace:
[  295.485548][    C0]  <NMI>
[  295.485555][    C0]  ? nmi_cpu_backtrace+0x1d4/0x380
[  295.485595][    C0]  ? __sanitizer_cov_trace_const_cmp2+0x20/0x20
[  295.485631][    C0]  ? nmi_cpu_backtrace_handler+0xc/0x10
[  295.485672][    C0]  ? nmi_handle+0x145/0x400
[  295.485701][    C0]  ? irqentry_nmi_enter+0x7f/0x90
[  295.485753][    C0]  ? __sanitizer_cov_trace_const_cmp2+0x20/0x20
[  295.485788][    C0]  ? default_do_nmi+0x69/0x160
[  295.485814][    C0]  ? exc_nmi+0x171/0x1e0
[  295.485838][    C0]  ? end_repeat_nmi+0x16/0x31
[  295.485916][    C0]  ? __sanitizer_cov_trace_const_cmp2+0x20/0x20
[  295.485952][    C0]  ? __sanitizer_cov_trace_const_cmp2+0x20/0x20
[  295.485988][    C0]  ? __sanitizer_cov_trace_const_cmp2+0x20/0x20
[  295.486024][    C0]  </NMI>
[  295.486030][    C0]  <TASK>
[  295.486036][    C0]  exfat_clear_bitmap+0x79/0x570
[  295.486075][    C0]  ? __exfat_free_cluster+0x69a/0x9b0
[  295.486112][    C0]  __exfat_free_cluster+0x772/0x9b0
[  295.486150][    C0]  ? exfat_ent_get+0x480/0x480
[  295.486187][    C0]  exfat_free_cluster+0x7a/0x100
[  295.486222][    C0]  __exfat_truncate+0x62a/0x7c0
[  295.486260][    C0]  ? exfat_file_fsync+0x1a0/0x1a0
[  295.486297][    C0]  ? spin_bug+0x1d0/0x1d0
[  295.486329][    C0]  exfat_evict_inode+0x263/0x340
[  295.486360][    C0]  ? exfat_build_inode+0x12d0/0x12d0
[  295.486391][    C0]  evict+0x2ed/0x6b0
[  295.486422][    C0]  iput.part.0+0x55e/0x7a0
[  295.486453][    C0]  iput+0x5c/0x80
[  295.486481][    C0]  dentry_unlink_inode+0x292/0x430
[  295.486506][    C0]  __dentry_kill+0x3b8/0x640
[  295.486531][    C0]  ? dput+0x39/0xfd0
[  295.486553][    C0]  dput+0x703/0xfd0
[  295.486577][    C0]  do_renameat2+0xc4c/0xdc0
[  295.486612][    C0]  ? __ia32_sys_link+0xa0/0xa0
[  295.486643][    C0]  ? reacquire_held_locks+0x4b0/0x4b0
[  295.486680][    C0]  ? preempt_count_sub+0x150/0x150
[  295.486716][    C0]  ? __check_object_size+0x323/0x740
[  295.486755][    C0]  ? strncpy_from_user+0x214/0x300
[  295.486798][    C0]  ? getname_flags.part.0+0x1d5/0x4d0
[  295.486827][    C0]  __x64_sys_rename+0x81/0xa0
[  295.486860][    C0]  do_syscall_64+0x38/0xb0
[  295.486882][    C0]  entry_SYSCALL_64_after_hwframe+0x63/0xcd
[  295.486906][    C0] RIP: 0033:0x7fb5a0498259
[  295.486928][    C0] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 21 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b8 ff ff ff f7 d8 64 89 01 48
[  295.486951][    C0] RSP: 002b:00007ffec688aba8 EFLAGS: 00000246 ORIG_RAX: 0000000000000052
[  295.486973][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb5a0498259
[  295.486988][    C0] RDX: 00007fb5a0498259 RSI: 0000000020000080 RDI: 0000000020000040
[  295.487004][    C0] RBP: 0000000000000004 R08: 0000000020000000 R09: 0000000020000000
[  295.487019][    C0] R10: 00000000000014d3 R11: 0000000000000246 R12: 00007ffec688abf0
[  295.487034][    C0] R13: 00007ffec688ac30 R14: 0000000000020000 R15: 0000000000000003
[  295.487052][    C0]  </TASK>
[  295.487060][    C0] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.818 msecs
[  296.364457][   T27] Kernel panic - not syncing: hung_task: blocked tasks
[  296.371363][   T27] CPU: 0 PID: 27 Comm: khungtaskd Not tainted 6.5.0-rc3-syzkaller-00123-g57012c57536f #0
[  296.381202][   T27] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 07/12/2023
[  296.391291][   T27] Call Trace:
[  296.394599][   T27]  <TASK>
[  296.397556][   T27]  dump_stack_lvl+0xd9/0x1b0
[  296.402197][   T27]  panic+0x6a4/0x750
[  296.406138][   T27]  ? panic_smp_self_stop+0xa0/0xa0
[  296.411309][   T27]  ? lapic_can_unplug_cpu+0xa0/0xa0
[  296.416562][   T27]  ? preempt_schedule_thunk+0x1a/0x30
[  296.421987][   T27]  ? watchdog+0xce1/0x11b0
[  296.426458][   T27]  watchdog+0xcf2/0x11b0
[  296.430837][   T27]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  296.436869][   T27]  ? proc_dohung_task_timeout_secs+0x90/0x90
[  296.442993][   T27]  kthread+0x33a/0x430
[  296.447102][   T27]  ? kthread_complete_and_exit+0x40/0x40
[  296.452777][   T27]  ret_from_fork+0x2c/0x70
[  296.457240][   T27]  ? kthread_complete_and_exit+0x40/0x40