./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor3996942351 <...> Warning: Permanently added '10.128.1.77' (ED25519) to the list of known hosts. execve("./syz-executor3996942351", ["./syz-executor3996942351"], 0x7fffcd7f6030 /* 10 vars */) = 0 brk(NULL) = 0x55558fc0e000 brk(0x55558fc0ed40) = 0x55558fc0ed40 arch_prctl(ARCH_SET_FS, 0x55558fc0e3c0) = 0 set_tid_address(0x55558fc0e690) = 5821 set_robust_list(0x55558fc0e6a0, 24) = 0 rseq(0x55558fc0ece0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor3996942351", 4096) = 28 getrandom("\xb7\x45\x18\xd1\x03\xef\xd4\x25", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55558fc0ed40 brk(0x55558fc2fd40) = 0x55558fc2fd40 brk(0x55558fc30000) = 0x55558fc30000 mprotect(0x7fb133a60000, 16384, PROT_READ) = 0 mmap(0x3ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x3ffffffff000 mmap(0x400000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400000000000 mmap(0x400001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x400001000000 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5822 attached [pid 5822] set_robust_list(0x55558fc0e6a0, 24 [pid 5821] <... clone resumed>, child_tidptr=0x55558fc0e690) = 5822 [pid 5822] <... set_robust_list resumed>) = 0 [pid 5821] openat(AT_FDCWD, "/sys/kernel/debug/x86/nmi_longest_ns", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "10000000000", 11) = 11 [pid 5821] close(3) = 0 [pid 5821] openat(AT_FDCWD, "/proc/sys/kernel/hung_task_check_interval_secs", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "20", 2) = 2 [pid 5821] close(3) = 0 [pid 5821] openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_kallsyms", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "1", 1) = 1 [pid 5821] close(3) = 0 [pid 5821] openat(AT_FDCWD, "/proc/sys/net/core/bpf_jit_harden", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "0", 1) = 1 [pid 5821] close(3) = 0 [pid 5821] openat(AT_FDCWD, "/proc/sys/kernel/kptr_restrict", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "0", 1) = 1 [pid 5821] close(3) = 0 [pid 5821] openat(AT_FDCWD, "/proc/sys/kernel/softlockup_all_cpu_backtrace", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "1", 1) = 1 [pid 5821] close(3) = 0 [pid 5821] openat(AT_FDCWD, "/proc/sys/fs/mount-max", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "100", 3) = 3 [pid 5821] close(3) = 0 [pid 5821] openat(AT_FDCWD, "/proc/sys/vm/oom_dump_tasks", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "0", 1) = 1 [pid 5821] close(3) = 0 [pid 5821] openat(AT_FDCWD, "/proc/sys/debug/exception-trace", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "0", 1) = 1 [pid 5821] close(3) = 0 [pid 5821] openat(AT_FDCWD, "/proc/sys/kernel/printk", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "7 4 1 3", 7) = 7 [pid 5821] close(3) = 0 [pid 5821] openat(AT_FDCWD, "/proc/sys/kernel/keys/gc_delay", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "1", 1) = 1 [pid 5821] close(3) = 0 [pid 5821] openat(AT_FDCWD, "/proc/sys/vm/oom_kill_allocating_task", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "1", 1) = 1 [pid 5821] close(3) = 0 [pid 5821] openat(AT_FDCWD, "/proc/sys/kernel/ctrl-alt-del", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "0", 1) = 1 [pid 5821] close(3) = 0 [pid 5821] openat(AT_FDCWD, "/proc/sys/kernel/cad_pid", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "5822", 4) = 4 [pid 5821] close(3) = 0 [pid 5821] kill(5822, SIGKILL) = 0 [pid 5822] +++ killed by SIGKILL +++ --- SIGCHLD {si_signo=SIGCHLD, si_code=CLD_KILLED, si_pid=5822, si_uid=0, si_status=SIGKILL, si_utime=0, si_stime=0} --- openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD./strace-static-x86_64: Process 5823 attached [pid 5823] set_robust_list(0x55558fc0e6a0, 24 [pid 5821] <... clone resumed>, child_tidptr=0x55558fc0e690) = 5823 [pid 5823] <... set_robust_list resumed>) = 0 [pid 5823] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5823] setpgid(0, 0) = 0 [pid 5823] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5823] write(3, "1000", 4) = 4 [pid 5823] close(3) = 0 [pid 5823] write(1, "executing program\n", 18executing program ) = 18 [pid 5823] futex(0x7fb133a665ec, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5823] rt_sigaction(SIGRT_1, {sa_handler=0x7fb133a045e0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7fb1339f5c90}, NULL, 8) = 0 [pid 5823] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5823] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fb133975000 [pid 5823] mprotect(0x7fb133976000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5823] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5823] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fb133995990, parent_tid=0x7fb133995990, exit_signal=0, stack=0x7fb133975000, stack_size=0x20300, tls=0x7fb1339956c0}./strace-static-x86_64: Process 5825 attached [pid 5825] rseq(0x7fb133995fe0, 0x20, 0, 0x53053053) = 0 [pid 5825] set_robust_list(0x7fb1339959a0, 24 [pid 5823] <... clone3 resumed> => {parent_tid=[5825]}, 88) = 5825 [pid 5825] <... set_robust_list resumed>) = 0 [pid 5823] rt_sigprocmask(SIG_SETMASK, [], [pid 5825] rt_sigprocmask(SIG_SETMASK, [], [pid 5823] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5825] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5823] futex(0x7fb133a665e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5825] memfd_create("syzkaller", 0 [pid 5823] <... futex resumed>) = 0 [pid 5825] <... memfd_create resumed>) = 3 [pid 5823] futex(0x7fb133a665ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5825] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7fb12b400000 [pid 5825] write(3, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131072) = 131072 [pid 5825] munmap(0x7fb12b400000, 138412032) = 0 [pid 5825] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5825] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5825] close(3) = 0 [pid 5825] close(4) = 0 [pid 5825] mkdir("./file1", 0777) = 0 [ 73.976839][ T5825] loop0: detected capacity change from 0 to 256 [ 74.030066][ T5825] ======================================================= [ 74.030066][ T5825] WARNING: The mand mount option has been deprecated and [ 74.030066][ T5825] and is ignored by this kernel. Remove the mand [ 74.030066][ T5825] option from the mount to silence this warning. [ 74.030066][ T5825] ======================================================= [ 74.067640][ T5825] exFAT-fs (loop0): Volume was not properly unmounted. Some data may be corrupt. Please run fsck. [pid 5825] mount("/dev/loop0", "./file1", "exfat", MS_SYNCHRONOUS|MS_MANDLOCK|MS_STRICTATIME|MS_LAZYTIME, "") = 0 [pid 5825] openat(AT_FDCWD, "./file1", O_RDONLY|O_DIRECTORY) = 3 [pid 5825] chdir("./file1") = 0 [pid 5825] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5825] futex(0x7fb133a665ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5825] futex(0x7fb133a665e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5823] <... futex resumed>) = 0 [pid 5823] futex(0x7fb133a665e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5825] <... futex resumed>) = 0 [pid 5823] <... futex resumed>) = 1 [pid 5825] truncate("./file1", 48953 [ 74.078469][ T5825] exFAT-fs (loop0): Medium has reported failures. Some data may be lost. [ 74.092977][ T5825] exFAT-fs (loop0): failed to load upcase table (idx : 0x00010000, chksum : 0xe5674ec2, utbl_chksum : 0xe619d30d) [pid 5823] futex(0x7fb133a665ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5825] <... truncate resumed>) = 0 [pid 5825] futex(0x7fb133a665ec, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5825] futex(0x7fb133a665e8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5823] <... futex resumed>) = 0 [pid 5825] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5823] futex(0x7fb133a665e8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5825] truncate("./file1", 61440 [pid 5823] <... futex resumed>) = 0 [pid 5823] futex(0x7fb133a665ec, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 5823] futex(0x7fb133a665fc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5823] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7fb133954000 [pid 5823] mprotect(0x7fb133955000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5823] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5823] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7fb133974990, parent_tid=0x7fb133974990, exit_signal=0, stack=0x7fb133954000, stack_size=0x20300, tls=0x7fb1339746c0}./strace-static-x86_64: Process 5826 attached [pid 5826] rseq(0x7fb133974fe0, 0x20, 0, 0x53053053) = 0 [pid 5826] set_robust_list(0x7fb1339749a0, 24 [pid 5823] <... clone3 resumed> => {parent_tid=[5826]}, 88) = 5826 [pid 5826] <... set_robust_list resumed>) = 0 [pid 5823] rt_sigprocmask(SIG_SETMASK, [], [pid 5826] rt_sigprocmask(SIG_SETMASK, [], [pid 5823] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5826] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5826] unlink("./file1" [pid 5823] futex(0x7fb133a665f8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5823] futex(0x7fb133a665fc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 5823] exit_group(0) = ? [pid 5821] kill(-5823, SIGKILL) = 0 [pid 5821] kill(5823, SIGKILL) = 0 [pid 5821] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5821] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5821] getdents64(3, 0x55558fc0f730 /* 2 entries */, 32768) = 48 [pid 5821] getdents64(3, 0x55558fc0f730 /* 0 entries */, 32768) = 0 [pid 5821] close(3) = 0 [ 86.808144][ T93] cfg80211: failed to load regulatory.db [ 237.205797][ T30] INFO: task syz-executor399:5826 blocked for more than 143 seconds. [ 237.214179][ T30] Not tainted 6.14.0-rc5-syzkaller-00023-gbb2281fb05e5 #0 [ 237.222458][ T30] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 237.232572][ T30] task:syz-executor399 state:D stack:27224 pid:5826 tgid:5823 ppid:5821 task_flags:0x400040 flags:0x00004006 [ 237.244807][ T30] Call Trace: [ 237.248378][ T30] [ 237.251352][ T30] __schedule+0x18bc/0x4c40 [ 237.256158][ T30] ? preempt_schedule_notrace_thunk+0x1a/0x30 [ 237.262287][ T30] ? __pfx___schedule+0x10/0x10 [ 237.267453][ T30] ? __pfx_lock_release+0x10/0x10 [ 237.272523][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 237.278811][ T30] ? __pfx_lockdep_hardirqs_on_prepare+0x10/0x10 [ 237.285195][ T30] ? _raw_spin_lock_irq+0xdf/0x120 [ 237.290696][ T30] ? schedule+0x90/0x320 [ 237.294989][ T30] schedule+0x14b/0x320 [ 237.299423][ T30] schedule_preempt_disabled+0x13/0x30 [ 237.304926][ T30] rwsem_down_write_slowpath+0xeee/0x13b0 [ 237.310994][ T30] ? rwsem_down_write_slowpath+0xa09/0x13b0 [ 237.317126][ T30] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 237.323328][ T30] ? __pfx_lock_acquire+0x10/0x10 [ 237.329423][ T30] ? make_vfsgid+0x51/0xa0 [ 237.333891][ T30] down_write+0x1d7/0x220 [ 237.338533][ T30] ? __pfx_down_write+0x10/0x10 [ 237.343438][ T30] vfs_unlink+0xe4/0x650 [ 237.348193][ T30] ? exfat_d_revalidate+0x5b/0x110 [ 237.353374][ T30] do_unlinkat+0x4ae/0x830 [ 237.358159][ T30] ? __pfx_do_unlinkat+0x10/0x10 [ 237.363178][ T30] ? __check_object_size+0x47a/0x730 [ 237.368928][ T30] ? __might_fault+0xc6/0x120 [ 237.373669][ T30] ? strncpy_from_user+0x146/0x270 [ 237.379524][ T30] ? getname_flags+0x1e3/0x540 [ 237.384334][ T30] __x64_sys_unlink+0x47/0x50 [ 237.389486][ T30] do_syscall_64+0xf3/0x230 [ 237.394054][ T30] ? clear_bhb_loop+0x35/0x90 [ 237.399246][ T30] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.405193][ T30] RIP: 0033:0x7fb1339de6f9 [ 237.410244][ T30] RSP: 002b:00007fb133974218 EFLAGS: 00000246 ORIG_RAX: 0000000000000057 [ 237.418989][ T30] RAX: ffffffffffffffda RBX: 00007fb133a665f8 RCX: 00007fb1339de6f9 [ 237.427285][ T30] RDX: 00007fb1339b7dc6 RSI: 0000000000000000 RDI: 0000400000000100 [ 237.435287][ T30] RBP: 00007fb133a665f0 R08: 00007ffcb7766927 R09: 0000000000000000 [ 237.444271][ T30] R10: 0000000000000000 R11: 0000000000000246 R12: 0031656c69662f2e [ 237.452613][ T30] R13: 0000400000000100 R14: 0000400000000080 R15: 0000400000000240 [ 237.460913][ T30] [ 237.464045][ T30] [ 237.464045][ T30] Showing all locks held in the system: [ 237.472343][ T30] 1 lock held by khungtaskd/30: [ 237.477680][ T30] #0: ffffffff8eb392e0 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x55/0x2a0 [ 237.488004][ T30] 2 locks held by getty/5580: [ 237.492719][ T30] #0: ffff88814e4bb0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 237.503008][ T30] #1: ffffc900033332f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x616/0x1770 [ 237.513613][ T30] 2 locks held by syz-executor399/5825: [ 237.519522][ T30] 3 locks held by syz-executor399/5826: [ 237.525092][ T30] #0: ffff888076078420 (sb_writers#10){.+.+}-{0:0}, at: mnt_want_write+0x3f/0x90 [ 237.534828][ T30] #1: ffff888073c182a0 (&sb->s_type->i_mutex_key#14/1){+.+.}-{4:4}, at: do_unlinkat+0x26a/0x830 [ 237.546396][ T30] #2: ffff888073c18910 (&sb->s_type->i_mutex_key#14){++++}-{4:4}, at: vfs_unlink+0xe4/0x650 [ 237.557071][ T30] [ 237.559420][ T30] ============================================= [ 237.559420][ T30] [ 237.568403][ T30] NMI backtrace for cpu 0 [ 237.568424][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.14.0-rc5-syzkaller-00023-gbb2281fb05e5 #0 [ 237.568446][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 237.568458][ T30] Call Trace: [ 237.568465][ T30] [ 237.568473][ T30] dump_stack_lvl+0x241/0x360 [ 237.568500][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 237.568520][ T30] ? __pfx__printk+0x10/0x10 [ 237.568562][ T30] nmi_cpu_backtrace+0x49c/0x4d0 [ 237.568590][ T30] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 237.568611][ T30] ? _printk+0xd5/0x120 [ 237.568645][ T30] ? __pfx__printk+0x10/0x10 [ 237.568674][ T30] ? __wake_up_klogd+0xcc/0x110 [ 237.568699][ T30] ? __pfx__printk+0x10/0x10 [ 237.568729][ T30] ? __rcu_read_unlock+0xa1/0x110 [ 237.568757][ T30] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 237.568782][ T30] nmi_trigger_cpumask_backtrace+0x198/0x320 [ 237.568809][ T30] watchdog+0x1058/0x10a0 [ 237.568838][ T30] ? watchdog+0x1ea/0x10a0 [ 237.568871][ T30] ? __pfx_watchdog+0x10/0x10 [ 237.568898][ T30] kthread+0x7a9/0x920 [ 237.568925][ T30] ? __pfx_kthread+0x10/0x10 [ 237.568954][ T30] ? __pfx_watchdog+0x10/0x10 [ 237.569000][ T30] ? __pfx_kthread+0x10/0x10 [ 237.569028][ T30] ? __pfx_kthread+0x10/0x10 [ 237.569060][ T30] ? __pfx_kthread+0x10/0x10 [ 237.569087][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 237.569111][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 237.569137][ T30] ? __pfx_kthread+0x10/0x10 [ 237.569168][ T30] ret_from_fork+0x4b/0x80 [ 237.569192][ T30] ? __pfx_kthread+0x10/0x10 [ 237.569222][ T30] ret_from_fork_asm+0x1a/0x30 [ 237.569259][ T30] [ 237.569267][ T30] Sending NMI from CPU 0 to CPUs 1: [ 237.738686][ C1] NMI backtrace for cpu 1 [ 237.738701][ C1] CPU: 1 UID: 0 PID: 5825 Comm: syz-executor399 Not tainted 6.14.0-rc5-syzkaller-00023-gbb2281fb05e5 #0 [ 237.738720][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 237.738730][ C1] RIP: 0010:__sanitizer_cov_trace_pc+0x0/0x70 [ 237.738760][ C1] Code: 89 fb e8 23 00 00 00 48 8b 3d a4 04 92 0c 48 89 de 5b e9 23 5e 59 00 0f 1f 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 0f 1e fa 48 8b 04 24 65 48 8b 0c 25 00 d5 03 00 65 8b 15 30 06 [ 237.738774][ C1] RSP: 0018:ffffc900040c78e8 EFLAGS: 00000246 [ 237.738790][ C1] RAX: 0000000000000000 RBX: ffff888023a2ce00 RCX: ffffffff824af6cf [ 237.738802][ C1] RDX: ffff8880330e5a00 RSI: 0000000000000001 RDI: 0000000000000000 [ 237.738812][ C1] RBP: 0000000000000001 R08: ffffffff824af6f1 R09: 1ffff1100f76b200 [ 237.738824][ C1] R10: dffffc0000000000 R11: ffffed100f76b201 R12: 0000000000000008 [ 237.738835][ C1] R13: ffff888023a2c500 R14: 0000000000000200 R15: ffff88807bb59000 [ 237.738847][ C1] FS: 00007fb1339956c0(0000) GS:ffff8880b8700000(0000) knlGS:0000000000000000 [ 237.738861][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 237.738872][ C1] CR2: 00005592141bc600 CR3: 0000000035948000 CR4: 00000000003526f0 [ 237.738887][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 237.738896][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 237.738907][ C1] Call Trace: [ 237.738915][ C1] [ 237.738922][ C1] ? nmi_cpu_backtrace+0x3c2/0x4d0 [ 237.738942][ C1] ? __pfx_lock_acquire+0x10/0x10 [ 237.738967][ C1] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 237.738985][ C1] ? nmi_handle+0x2a/0x5a0 [ 237.739015][ C1] ? nmi_cpu_backtrace_handler+0xc/0x20 [ 237.739035][ C1] ? nmi_handle+0x14f/0x5a0 [ 237.739058][ C1] ? nmi_handle+0x2a/0x5a0 [ 237.739082][ C1] ? __pfx___sanitizer_cov_trace_pc+0x10/0x10 [ 237.739104][ C1] ? default_do_nmi+0x63/0x160 [ 237.739121][ C1] ? exc_nmi+0x123/0x1f0 [ 237.739137][ C1] ? end_repeat_nmi+0xf/0x53 [ 237.739164][ C1] ? __bread_gfp+0xc1/0x400 [ 237.739179][ C1] ? __bread_gfp+0x9f/0x400 [ 237.739194][ C1] ? __pfx___sanitizer_cov_trace_pc+0x10/0x10 [ 237.739217][ C1] ? __pfx___sanitizer_cov_trace_pc+0x10/0x10 [ 237.739239][ C1] ? __pfx___sanitizer_cov_trace_pc+0x10/0x10 [ 237.739261][ C1] [ 237.739267][ C1] [ 237.739272][ C1] __bread_gfp+0xca/0x400 [ 237.739289][ C1] exfat_ent_get+0x14d/0x400 [ 237.739312][ C1] exfat_find_last_cluster+0x15d/0x380 [ 237.739334][ C1] ? __pfx_exfat_find_last_cluster+0x10/0x10 [ 237.739363][ C1] ? inode_newsize_ok+0x181/0x1c0 [ 237.739387][ C1] exfat_setattr+0xa8d/0x1a90 [ 237.739419][ C1] ? __pfx_exfat_setattr+0x10/0x10 [ 237.739440][ C1] ? evm_inode_setattr+0x1b2/0x7d0 [ 237.739469][ C1] ? security_inode_setattr+0xdb/0x350 [ 237.739492][ C1] ? __pfx_exfat_setattr+0x10/0x10 [ 237.739515][ C1] notify_change+0xbca/0xe90 [ 237.739543][ C1] do_truncate+0x220/0x310 [ 237.739565][ C1] ? __pfx_do_truncate+0x10/0x10 [ 237.739584][ C1] ? rcu_read_lock_any_held+0xb7/0x160 [ 237.739607][ C1] ? mnt_get_write_access+0x226/0x2b0 [ 237.739630][ C1] ? bpf_lsm_path_truncate+0x9/0x10 [ 237.739648][ C1] vfs_truncate+0x492/0x530 [ 237.739671][ C1] ? __pfx_vfs_truncate+0x10/0x10 [ 237.739690][ C1] ? kmem_cache_free+0x195/0x410 [ 237.739706][ C1] ? user_path_at+0x44/0x60 [ 237.739729][ C1] do_sys_truncate+0xdb/0x190 [ 237.739750][ C1] ? __pfx_do_sys_truncate+0x10/0x10 [ 237.739771][ C1] ? do_syscall_64+0x100/0x230 [ 237.739798][ C1] do_syscall_64+0xf3/0x230 [ 237.739822][ C1] ? clear_bhb_loop+0x35/0x90 [ 237.739846][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 237.739869][ C1] RIP: 0033:0x7fb1339de6f9 [ 237.739883][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 237.739896][ C1] RSP: 002b:00007fb133995218 EFLAGS: 00000246 ORIG_RAX: 000000000000004c [ 237.739912][ C1] RAX: ffffffffffffffda RBX: 00007fb133a665e8 RCX: 00007fb1339de6f9 [ 237.739924][ C1] RDX: ffffffffffffffb0 RSI: 000000000000f000 RDI: 0000400000000080 [ 237.739935][ C1] RBP: 00007fb133a665e0 R08: 0000000000000000 R09: 0000000000000000 [ 237.739945][ C1] R10: 0000000000000000 R11: 0000000000000246 R12: 0031656c69662f2e [ 237.739955][ C1] R13: 0000400000000100 R14: 0000400000000080 R15: 0000400000000240 [ 237.739974][ C1] [ 237.740811][ T30] Kernel panic - not syncing: hung_task: blocked tasks [ 238.181475][ T30] CPU: 0 UID: 0 PID: 30 Comm: khungtaskd Not tainted 6.14.0-rc5-syzkaller-00023-gbb2281fb05e5 #0 [ 238.191986][ T30] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 02/12/2025 [ 238.202046][ T30] Call Trace: [ 238.205333][ T30] [ 238.208269][ T30] dump_stack_lvl+0x241/0x360 [ 238.212959][ T30] ? __pfx_dump_stack_lvl+0x10/0x10 [ 238.218163][ T30] ? __pfx__printk+0x10/0x10 [ 238.222773][ T30] ? lockdep_hardirqs_on_prepare+0x43d/0x780 [ 238.228776][ T30] ? vscnprintf+0x5d/0x90 [ 238.233114][ T30] panic+0x349/0x880 [ 238.237036][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 238.243234][ T30] ? __pfx_panic+0x10/0x10 [ 238.247688][ T30] ? preempt_schedule_thunk+0x1a/0x30 [ 238.253090][ T30] ? nmi_trigger_cpumask_backtrace+0x244/0x320 [ 238.259260][ T30] ? nmi_trigger_cpumask_backtrace+0x2d4/0x320 [ 238.265431][ T30] ? nmi_trigger_cpumask_backtrace+0x2d9/0x320 [ 238.271598][ T30] watchdog+0x1097/0x10a0 [ 238.275943][ T30] ? watchdog+0x1ea/0x10a0 [ 238.280373][ T30] ? __pfx_watchdog+0x10/0x10 [ 238.285079][ T30] kthread+0x7a9/0x920 [ 238.289160][ T30] ? __pfx_kthread+0x10/0x10 [ 238.293763][ T30] ? __pfx_watchdog+0x10/0x10 [ 238.298465][ T30] ? __pfx_kthread+0x10/0x10 [ 238.303082][ T30] ? __pfx_kthread+0x10/0x10 [ 238.307684][ T30] ? __pfx_kthread+0x10/0x10 [ 238.312285][ T30] ? _raw_spin_unlock_irq+0x23/0x50 [ 238.317503][ T30] ? lockdep_hardirqs_on+0x99/0x150 [ 238.322713][ T30] ? __pfx_kthread+0x10/0x10 [ 238.327328][ T30] ret_from_fork+0x4b/0x80 [ 238.331751][ T30] ? __pfx_kthread+0x10/0x10 [ 238.336352][ T30] ret_from_fork_asm+0x1a/0x30 [ 238.341132][ T30] [ 238.344487][ T30] Kernel Offset: disabled [ 238.348817][ T30] Rebooting in 86400 seconds..