syzkaller login: [   91.820309][   T10] cfg80211: failed to load regulatory.db
Warning: Permanently added '[localhost]:61150' (ED25519) to the list of known hosts.
executing program
[  211.375069][ T5342] loop0: detected capacity change from 0 to 256
[  211.406186][ T5342] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xc61f63e4, utbl_chksum : 0xe619d30d)
[  434.851013][   T27] INFO: task kworker/u4:2:25 blocked for more than 143 seconds.
[  434.854488][   T27]       Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0
[  434.858596][   T27] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[  434.880831][   T27] task:kworker/u4:2    state:D stack:24520 pid:25    tgid:25    ppid:2      task_flags:0x4208160 flags:0x00004000
[  434.885800][   T27] Workqueue: writeback wb_workfn (flush-7:0)
[  434.888417][   T27] Call Trace:
[  434.889788][   T27]  <TASK>
[  434.910828][   T27]  __schedule+0x16e2/0x4cd0
[  434.912831][   T27]  ? blk_mq_flush_plug_list+0x10e/0x1760
[  434.915009][   T27]  ? __lock_acquire+0xaac/0xd20
[  434.917053][   T27]  ? __pfx_blk_mq_flush_plug_list+0x10/0x10
[  434.919633][   T27]  ? schedule+0x165/0x360
[  434.931322][   T27]  ? __pfx___schedule+0x10/0x10
[  434.933483][   T27]  ? schedule+0x91/0x360
[  434.935344][   T27]  schedule+0x165/0x360
[  434.937118][   T27]  schedule_preempt_disabled+0x13/0x30
[  434.939323][   T27]  __mutex_lock+0x724/0xe80
[  434.950862][   T27]  ? __mutex_lock+0x51b/0xe80
[  434.952891][   T27]  ? exfat_write_inode+0xe8/0x1a0
[  434.955021][   T27]  ? __pfx___mutex_lock+0x10/0x10
[  434.957166][   T27]  exfat_write_inode+0xe8/0x1a0
[  434.959370][   T27]  __writeback_single_inode+0x6f1/0xff0
[  434.971716][   T27]  writeback_sb_inodes+0x6b5/0x1000
[  434.974437][   T27]  ? __pfx_writeback_sb_inodes+0x10/0x10
[  434.976722][   T27]  ? __pfx___up_read+0x10/0x10
[  434.978702][   T27]  __writeback_inodes_wb+0x111/0x240
[  434.990830][   T27]  wb_writeback+0x44f/0xaf0
[  434.992898][   T27]  ? queue_io+0x351/0x590
[  434.994686][   T27]  ? __pfx_wb_writeback+0x10/0x10
[  434.996829][   T27]  wb_workfn+0xaef/0xef0
[  434.998572][   T27]  ? __pfx_wb_workfn+0x10/0x10
[  435.011320][   T27]  ? register_lock_class+0x51/0x320
[  435.013723][   T27]  ? __lock_acquire+0xaac/0xd20
[  435.015829][   T27]  ? process_scheduled_works+0x9ec/0x17a0
[  435.018281][   T27]  ? _raw_spin_unlock_irq+0x23/0x50
[  435.020421][   T27]  ? process_scheduled_works+0x9ec/0x17a0
[  435.031245][   T27]  ? process_scheduled_works+0x9ec/0x17a0
[  435.033858][   T27]  process_scheduled_works+0xadb/0x17a0
[  435.036521][   T27]  ? __pfx_process_scheduled_works+0x10/0x10
[  435.039030][   T27]  worker_thread+0x8a0/0xda0
[  435.051206][   T27]  kthread+0x70e/0x8a0
[  435.052909][   T27]  ? __pfx_worker_thread+0x10/0x10
[  435.055276][   T27]  ? __pfx_kthread+0x10/0x10
[  435.057613][   T27]  ? __pfx_kthread+0x10/0x10
[  435.059472][   T27]  ? _raw_spin_unlock_irq+0x23/0x50
[  435.080809][   T27]  ? lockdep_hardirqs_on+0x9c/0x150
[  435.082773][   T27]  ? __pfx_kthread+0x10/0x10
[  435.084719][   T27]  ret_from_fork+0x4b/0x80
[  435.086684][   T27]  ? __pfx_kthread+0x10/0x10
[  435.088791][   T27]  ret_from_fork_asm+0x1a/0x30
[  435.100831][   T27]  </TASK>
[  435.102687][   T27] 
[  435.102687][   T27] Showing all locks held in the system:
[  435.106034][   T27] 4 locks held by kworker/u4:2/25:
[  435.108255][   T27]  #0: ffff888030f2a148 ((wq_completion)writeback){+.+.}-{0:0}, at: process_scheduled_works+0x9b1/0x17a0
[  435.121145][   T27]  #1: ffffc900004bfc60 ((work_completion)(&(&wb->dwork)->work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ec/0x17a0
[  435.125900][   T27]  #2: ffff888011b060e0 (&type->s_umount_key#42){.+.+}-{4:4}, at: super_trylock_shared+0x20/0xf0
[  435.129818][   T27]  #3: ffff88801f1bc0e8 (&sbi->s_lock){+.+.}-{4:4}, at: exfat_write_inode+0xe8/0x1a0
[  435.150826][   T27] 1 lock held by khungtaskd/27:
[  435.153099][   T27]  #0: ffffffff8df3dee0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180
[  435.157405][   T27] 2 locks held by getty/5111:
[  435.159477][   T27]  #0: ffff88801fce10a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70
[  435.181279][   T27]  #1: ffffc9000018e2f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400
[  435.186811][   T27] 3 locks held by syz-executor247/5342:
[  435.188983][   T27] 
[  435.190012][   T27] =============================================
[  435.190012][   T27] 
[  435.200937][   T27] NMI backtrace for cpu 0
[  435.200949][   T27] CPU: 0 UID: 0 PID: 27 Comm: khungtaskd Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(full) 
[  435.200958][   T27] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  435.200962][   T27] Call Trace:
[  435.200967][   T27]  <TASK>
[  435.200971][   T27]  dump_stack_lvl+0x189/0x250
[  435.200983][   T27]  ? __wake_up_klogd+0xd9/0x110
[  435.200993][   T27]  ? __pfx_dump_stack_lvl+0x10/0x10
[  435.201002][   T27]  ? __pfx__printk+0x10/0x10
[  435.201013][   T27]  nmi_cpu_backtrace+0x39e/0x3d0
[  435.201022][   T27]  ? __pfx_nmi_cpu_backtrace+0x10/0x10
[  435.201033][   T27]  ? _printk+0xcf/0x120
[  435.201040][   T27]  ? __pfx__printk+0x10/0x10
[  435.201047][   T27]  ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[  435.201057][   T27]  nmi_trigger_cpumask_backtrace+0x17a/0x300
[  435.201065][   T27]  watchdog+0xfee/0x1030
[  435.201075][   T27]  ? watchdog+0x1de/0x1030
[  435.201085][   T27]  kthread+0x70e/0x8a0
[  435.201094][   T27]  ? __pfx_watchdog+0x10/0x10
[  435.201102][   T27]  ? __pfx_kthread+0x10/0x10
[  435.201110][   T27]  ? __pfx_kthread+0x10/0x10
[  435.201121][   T27]  ? _raw_spin_unlock_irq+0x23/0x50
[  435.201132][   T27]  ? lockdep_hardirqs_on+0x9c/0x150
[  435.201144][   T27]  ? __pfx_kthread+0x10/0x10
[  435.201155][   T27]  ret_from_fork+0x4b/0x80
[  435.201163][   T27]  ? __pfx_kthread+0x10/0x10
[  435.201170][   T27]  ret_from_fork_asm+0x1a/0x30
[  435.201181][   T27]  </TASK>
[  435.201186][   T27] Kernel panic - not syncing: hung_task: blocked tasks
[  435.259670][   T27] CPU: 0 UID: 0 PID: 27 Comm: khungtaskd Not tainted 6.15.0-rc7-syzkaller-00099-g94305e83eccb #0 PREEMPT(full) 
[  435.264686][   T27] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[  435.269044][   T27] Call Trace:
[  435.270467][   T27]  <TASK>
[  435.271714][   T27]  dump_stack_lvl+0x99/0x250
[  435.273899][   T27]  ? __asan_memcpy+0x40/0x70
[  435.275763][   T27]  ? __pfx_dump_stack_lvl+0x10/0x10
[  435.278055][   T27]  ? __pfx__printk+0x10/0x10
[  435.280495][   T27]  panic+0x2db/0x790
[  435.282341][   T27]  ? __pfx_panic+0x10/0x10
[  435.284200][   T27]  ? nmi_backtrace_stall_check+0x433/0x440
[  435.286559][   T27]  ? irq_work_queue+0xc3/0x140
[  435.288603][   T27]  watchdog+0x102d/0x1030
[  435.290350][   T27]  ? watchdog+0x1de/0x1030
[  435.292061][   T27]  kthread+0x70e/0x8a0
[  435.293739][   T27]  ? __pfx_watchdog+0x10/0x10
[  435.295625][   T27]  ? __pfx_kthread+0x10/0x10
[  435.297559][   T27]  ? __pfx_kthread+0x10/0x10
[  435.299601][   T27]  ? _raw_spin_unlock_irq+0x23/0x50
[  435.301927][   T27]  ? lockdep_hardirqs_on+0x9c/0x150
[  435.304058][   T27]  ? __pfx_kthread+0x10/0x10
[  435.305857][   T27]  ret_from_fork+0x4b/0x80
[  435.307624][   T27]  ? __pfx_kthread+0x10/0x10
[  435.309384][   T27]  ret_from_fork_asm+0x1a/0x30
[  435.311249][   T27]  </TASK>
[  435.312794][   T27] Kernel Offset: disabled
[  435.314660][   T27] Rebooting in 86400 seconds..

VM DIAGNOSIS:
17:32:47  Registers:
info registers vcpu 0

CPU#0
RAX=0000000000000030 RBX=0000000000000030 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900004ef770
R8 =ffff888000ca0237 R9 =1ffff11000194046 R10=dffffc0000000000 R11=ffffffff853e1810
R12=dffffc0000000000 R13=ffffffff99850c80 R14=ffffffff99b55c40 R15=0000000000000000
RIP=ffffffff853e188c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS   [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88808d6c2000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT=     fffffe0000001000 0000007f
IDT=     fffffe0000000000 00000fff
CR0=80050033 CR2=0000559cea4a4168 CR3=000000003f634000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000 
DR6=00000000fffe0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000010444000 Opmask01=0000000000000001 Opmask02=00000000fffffbff Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 15095e12234482c6 427f2b08f3c27e0a
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 cc397a7cd5e92ac2 23846166a191853f
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 88deb36203a93a04 92835737017c4c4d
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5e4e5b5da2312fa7 4caa7bc238ca2dc9
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000000002c0
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000040
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 942144e956d0834f 1edcfc269ad3d947
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 1596f3f694c0c24a 7f6c114548b53778
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a4a3117776abe0b8 4333ef453c33829c
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 ca9998aae9ca987e c59b4bcfcf0fdd6f
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 2ed1a2b380318d48 8f27ab30574c7725
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0c2280ec9a89934a f4bb4d799dd38b16
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 a54ff53a3c6ef372 bb67ae856a09e667
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 5be0cd191f83d9ab 9b05688c510e527f
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000002e2e
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000