./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor4134003922 <...> Warning: Permanently added '10.128.1.115' (ED25519) to the list of known hosts. execve("./syz-executor4134003922", ["./syz-executor4134003922"], 0x7fffcfbbbe10 /* 10 vars */) = 0 brk(NULL) = 0x55557d5f0000 brk(0x55557d5f0e00) = 0x55557d5f0e00 arch_prctl(ARCH_SET_FS, 0x55557d5f0480) = 0 set_tid_address(0x55557d5f0750) = 5820 set_robust_list(0x55557d5f0760, 24) = 0 rseq(0x55557d5f0da0, 0x20, 0, 0x53053053) = 0 prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0 readlink("/proc/self/exe", "/root/syz-executor4134003922", 4096) = 28 getrandom("\x87\x60\x20\x95\x2c\x70\x03\xa1", 8, GRND_NONBLOCK) = 8 brk(NULL) = 0x55557d5f0e00 brk(0x55557d611e00) = 0x55557d611e00 brk(0x55557d612000) = 0x55557d612000 mprotect(0x7f4d09fd9000, 16384, PROT_READ) = 0 mmap(0x1ffffffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffffffff000 mmap(0x200000000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200000000000 mmap(0x200001000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x200001000000 rt_sigaction(SIGRTMIN, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0 rt_sigaction(SIGRT_1, {sa_handler=SIG_IGN, sa_mask=[], sa_flags=0}, NULL, 8) = 0 rt_sigaction(SIGSEGV, {sa_handler=0x7f4d09f1ed70, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f4d09f27bc0}, NULL, 8) = 0 rt_sigaction(SIGBUS, {sa_handler=0x7f4d09f1ed70, sa_mask=[], sa_flags=SA_RESTORER|SA_NODEFER|SA_SIGINFO, sa_restorer=0x7f4d09f27bc0}, NULL, 8) = 0 openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3 ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address) close(3) = 0 clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x55557d5f0750) = 5821 ./strace-static-x86_64: Process 5821 attached [pid 5821] set_robust_list(0x55557d5f0760, 24) = 0 [pid 5821] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0 [pid 5821] setpgid(0, 0) = 0 [pid 5821] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3 [pid 5821] write(3, "1000", 4) = 4 [pid 5821] close(3) = 0 [pid 5821] write(1, "executing program\n", 18executing program ) = 18 [pid 5821] futex(0x7f4d09fdf6ac, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5821] rt_sigaction(SIGRT_1, {sa_handler=0x7f4d09f7e0d0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7f4d09f27bc0}, NULL, 8) = 0 [pid 5821] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0 [pid 5821] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4d09eec000 [pid 5821] mprotect(0x7f4d09eed000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5821] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5821] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4d09f0c990, parent_tid=0x7f4d09f0c990, exit_signal=0, stack=0x7f4d09eec000, stack_size=0x20240, tls=0x7f4d09f0c6c0}./strace-static-x86_64: Process 5823 attached [pid 5823] rseq(0x7f4d09f0cfe0, 0x20, 0, 0x53053053 [pid 5821] <... clone3 resumed> => {parent_tid=[5823]}, 88) = 5823 [pid 5823] <... rseq resumed>) = 0 [pid 5823] set_robust_list(0x7f4d09f0c9a0, 24 [pid 5821] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0 [pid 5821] futex(0x7f4d09fdf6a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5823] <... set_robust_list resumed>) = 0 [pid 5823] rt_sigprocmask(SIG_SETMASK, [], [pid 5821] futex(0x7f4d09fdf6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5823] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5823] memfd_create("syzkaller", 0) = 3 [pid 5823] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7f4d01a00000 [pid 5823] write(3, "\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00"..., 524288) = 524288 [pid 5823] munmap(0x7f4d01a00000, 138412032) = 0 [pid 5823] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 4 [pid 5823] ioctl(4, LOOP_SET_FD, 3) = 0 [pid 5823] close(3) = 0 [pid 5823] close(4) = 0 [pid 5823] mkdir("./file2", 0777) = 0 [ 83.977171][ T5823] loop0: detected capacity change from 0 to 1024 [ 84.011712][ T5823] ======================================================= [ 84.011712][ T5823] WARNING: The mand mount option has been deprecated and [ 84.011712][ T5823] and is ignored by this kernel. Remove the mand [ 84.011712][ T5823] option from the mount to silence this warning. [ 84.011712][ T5823] ======================================================= [ 84.047257][ T5823] EXT4-fs: Ignoring removed oldalloc option [ 84.053216][ T5823] EXT4-fs: Ignoring removed orlov option [ 84.060802][ T5823] EXT4-fs (loop0): stripe (1570) is not aligned with cluster size (16), stripe is disabled [pid 5823] mount("/dev/loop0", "./file2", "ext4", MS_NOSUID|MS_NODEV|MS_MANDLOCK|MS_STRICTATIME|MS_LAZYTIME, "debug_want_extra_isize=0x0000000000000080,grpjquota=,oldalloc,errors=remount-ro,orlov,usrquota,strip"...) = 0 [pid 5823] openat(AT_FDCWD, "./file2", O_RDONLY|O_DIRECTORY) = 3 [pid 5823] chdir("./file2") = 0 [pid 5823] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = -1 EBUSY (Device or resource busy) [pid 5823] futex(0x7f4d09fdf6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5821] <... futex resumed>) = 0 [ 84.083648][ T5823] EXT4-fs (loop0): mounted filesystem 00000000-0000-0000-0000-000000000000 r/w without journal. Quota mode: writeback. [pid 5823] futex(0x7f4d09fdf6a8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable) [pid 5821] futex(0x7f4d09fdf6a8, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5823] renameat2(AT_FDCWD, "./file0/file0", AT_FDCWD, "./file1", RENAME_WHITEOUT [pid 5821] futex(0x7f4d09fdf6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5823] <... renameat2 resumed>) = 0 [pid 5823] futex(0x7f4d09fdf6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5821] <... futex resumed>) = 0 [pid 5823] futex(0x7f4d09fdf6a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5821] futex(0x7f4d09fdf6a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5823] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5821] <... futex resumed>) = 0 [pid 5823] mkdir("./bus", 0777 [pid 5821] futex(0x7f4d09fdf6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=4, tv_nsec=50000000} [pid 5823] <... mkdir resumed>) = 0 [pid 5823] --- SIGSEGV {si_signo=SIGSEGV, si_code=SEGV_MAPERR, si_addr=NULL} --- [pid 5823] futex(0x7f4d09fdf6ac, FUTEX_WAKE_PRIVATE, 1000000) = 1 [pid 5821] <... futex resumed>) = 0 [pid 5823] futex(0x7f4d09fdf6a8, FUTEX_WAIT_PRIVATE, 0, NULL [pid 5821] futex(0x7f4d09fdf6a8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5823] <... futex resumed>) = -1 EAGAIN (Resource temporarily unavailable) [pid 5823] creat("./file0aaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaaa", 0602 [pid 5821] <... futex resumed>) = 0 [pid 5821] futex(0x7f4d09fdf6ac, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}) = -1 ETIMEDOUT (Connection timed out) [pid 5821] futex(0x7f4d09fdf6bc, FUTEX_WAKE_PRIVATE, 1000000) = 0 [pid 5821] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7f4d09ecb000 [pid 5821] mprotect(0x7f4d09ecc000, 131072, PROT_READ|PROT_WRITE) = 0 [pid 5821] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0 [pid 5821] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7f4d09eeb990, parent_tid=0x7f4d09eeb990, exit_signal=0, stack=0x7f4d09ecb000, stack_size=0x20240, tls=0x7f4d09eeb6c0}./strace-static-x86_64: Process 5827 attached [pid 5827] rseq(0x7f4d09eebfe0, 0x20, 0, 0x53053053 [pid 5821] <... clone3 resumed> => {parent_tid=[5827]}, 88) = 5827 [pid 5827] <... rseq resumed>) = 0 [pid 5821] rt_sigprocmask(SIG_SETMASK, [], [pid 5827] set_robust_list(0x7f4d09eeb9a0, 24 [pid 5821] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5827] <... set_robust_list resumed>) = 0 [pid 5821] futex(0x7f4d09fdf6b8, FUTEX_WAKE_PRIVATE, 1000000 [pid 5827] rt_sigprocmask(SIG_SETMASK, [], [pid 5821] <... futex resumed>) = 0 [pid 5827] <... rt_sigprocmask resumed>NULL, 8) = 0 [pid 5821] futex(0x7f4d09fdf6bc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} [pid 5827] rename("./file0", "./file1" [pid 5821] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out) [pid 5821] exit_group(0) = ? [pid 5820] kill(-5821, SIGKILL) = 0 [pid 5820] kill(5821, SIGKILL) = 0 [pid 5820] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3 [pid 5820] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0 [pid 5820] getdents64(3, 0x55557d5f17f0 /* 2 entries */, 32768) = 48 [pid 5820] getdents64(3, 0x55557d5f17f0 /* 0 entries */, 32768) = 0 [pid 5820] close(3) = 0 [ 92.014267][ T9] cfg80211: failed to load regulatory.db [ 286.566268][ T31] INFO: task syz-executor413:5827 blocked for more than 143 seconds. [ 286.574455][ T31] Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 [ 286.582883][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message. [ 286.591835][ T31] task:syz-executor413 state:D stack:28888 pid:5827 tgid:5821 ppid:5820 task_flags:0x400040 flags:0x00004006 [ 286.604104][ T31] Call Trace: [ 286.607645][ T31] [ 286.610612][ T31] __schedule+0x168f/0x4c70 [ 286.615184][ T31] ? __pfx_preempt_schedule_notrace+0x10/0x10 [ 286.621736][ T31] ? __lock_acquire+0xaac/0xd20 [ 286.626860][ T31] ? schedule+0x165/0x360 [ 286.631224][ T31] ? __pfx___schedule+0x10/0x10 [ 286.636545][ T31] ? schedule+0x91/0x360 [ 286.640829][ T31] schedule+0x165/0x360 [ 286.645012][ T31] schedule_preempt_disabled+0x13/0x30 [ 286.650964][ T31] rwsem_down_write_slowpath+0xbec/0x1030 [ 286.656991][ T31] ? rwsem_down_write_slowpath+0x7ec/0x1030 [ 286.662937][ T31] ? __pfx_rwsem_down_write_slowpath+0x10/0x10 [ 286.669503][ T31] ? __lock_acquire+0xaac/0xd20 [ 286.674405][ T31] ? do_renameat2+0x3dd/0xc50 [ 286.679531][ T31] down_write_nested+0x1b5/0x200 [ 286.684503][ T31] ? __pfx_down_write_nested+0x10/0x10 [ 286.690849][ T31] ? mnt_get_write_access+0x223/0x2a0 [ 286.696612][ T31] do_renameat2+0x3dd/0xc50 [ 286.701192][ T31] ? __pfx_do_renameat2+0x10/0x10 [ 286.706692][ T31] ? getname_flags+0x1e5/0x540 [ 286.711496][ T31] __x64_sys_rename+0x82/0x90 [ 286.716563][ T31] do_syscall_64+0xf6/0x210 [ 286.721101][ T31] ? ret_from_fork_asm+0x1a/0x30 [ 286.726415][ T31] ? clear_bhb_loop+0x45/0xa0 [ 286.731138][ T31] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 286.737419][ T31] RIP: 0033:0x7f4d09f58409 [ 286.742089][ T31] RSP: 002b:00007f4d09eeb168 EFLAGS: 00000246 ORIG_RAX: 0000000000000052 [ 286.750925][ T31] RAX: ffffffffffffffda RBX: 00007f4d09fdf6b8 RCX: 00007f4d09f58409 [ 286.759186][ T31] RDX: 00007f4d09f31b56 RSI: 00002000000002c0 RDI: 0000200000000580 [ 286.767431][ T31] RBP: 00007f4d09fdf6b0 R08: 00007ffea48d8be7 R09: 0000000000000000 [ 286.775429][ T31] R10: 0000000000000000 R11: 0000000000000246 R12: 00007f4d09fdf6bc [ 286.783832][ T31] R13: 000000000000006e R14: 00007ffea48d8b00 R15: 00007ffea48d8be8 [ 286.792114][ T31] [ 286.795177][ T31] [ 286.795177][ T31] Showing all locks held in the system: [ 286.803913][ T31] 1 lock held by khungtaskd/31: [ 286.809045][ T31] #0: ffffffff8df3b860 (rcu_read_lock){....}-{1:3}, at: debug_show_all_locks+0x2e/0x180 [ 286.819241][ T31] 2 locks held by getty/5574: [ 286.823941][ T31] #0: ffff888034aa20a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x25/0x70 [ 286.834140][ T31] #1: ffffc900033532f0 (&ldata->atomic_read_lock){+.+.}-{4:4}, at: n_tty_read+0x43e/0x1400 [ 286.844510][ T31] 3 locks held by syz-executor413/5823: [ 286.850309][ T31] 2 locks held by syz-executor413/5827: [ 286.855880][ T31] #0: ffff88802c30a420 (sb_writers#4){.+.+}-{0:0}, at: mnt_want_write+0x41/0x90 [ 286.865374][ T31] #1: ffff88807bcfabd8 (&type->i_mutex_dir_key#3/1){+.+.}-{4:4}, at: do_renameat2+0x3dd/0xc50 [ 286.876310][ T31] [ 286.878677][ T31] ============================================= [ 286.878677][ T31] [ 286.887581][ T31] NMI backtrace for cpu 0 [ 286.887605][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 286.887628][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 286.887640][ T31] Call Trace: [ 286.887647][ T31] [ 286.887655][ T31] dump_stack_lvl+0x189/0x250 [ 286.887685][ T31] ? __wake_up_klogd+0xd9/0x110 [ 286.887710][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 286.887736][ T31] ? __pfx__printk+0x10/0x10 [ 286.887780][ T31] nmi_cpu_backtrace+0x39e/0x3d0 [ 286.887814][ T31] ? __pfx_nmi_cpu_backtrace+0x10/0x10 [ 286.887842][ T31] ? _printk+0xcf/0x120 [ 286.887876][ T31] ? __pfx__printk+0x10/0x10 [ 286.887909][ T31] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10 [ 286.887943][ T31] nmi_trigger_cpumask_backtrace+0x17a/0x300 [ 286.887977][ T31] watchdog+0xfee/0x1030 [ 286.888002][ T31] ? watchdog+0x1de/0x1030 [ 286.888033][ T31] kthread+0x70e/0x8a0 [ 286.888058][ T31] ? __pfx_watchdog+0x10/0x10 [ 286.888080][ T31] ? __pfx_kthread+0x10/0x10 [ 286.888103][ T31] ? __pfx_kthread+0x10/0x10 [ 286.888123][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 286.888143][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 286.888166][ T31] ? __pfx_kthread+0x10/0x10 [ 286.888186][ T31] ret_from_fork+0x4b/0x80 [ 286.888204][ T31] ? __pfx_kthread+0x10/0x10 [ 286.888224][ T31] ret_from_fork_asm+0x1a/0x30 [ 286.888269][ T31] [ 286.888277][ T31] Sending NMI from CPU 0 to CPUs 1: [ 287.035074][ C1] NMI backtrace for cpu 1 [ 287.035096][ C1] CPU: 1 UID: 0 PID: 5823 Comm: syz-executor413 Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 287.035117][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 287.035127][ C1] RIP: 0010:check_preemption_disabled+0x3/0x120 [ 287.035154][ C1] Code: c0 8b 48 c7 c6 c0 fe c0 8b eb 1c 66 66 66 2e 0f 1f 84 00 00 00 00 00 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 90 55 41 57 <41> 56 53 48 83 ec 10 65 48 8b 05 4e ee 22 07 48 89 44 24 08 65 8b [ 287.035168][ C1] RSP: 0018:ffffc90003fa6f88 EFLAGS: 00000046 [ 287.035183][ C1] RAX: 98d0f4957106d9ef RBX: 0000000000000202 RCX: cd0dc5490b8a1b00 [ 287.035195][ C1] RDX: 0000000000000003 RSI: ffffffff8d9213f3 RDI: ffffffff8bc0fee0 [ 287.035207][ C1] RBP: ffff88807d4f0b68 R08: ffff88807bccf1df R09: 1ffff1100f799e3b [ 287.035219][ C1] R10: dffffc0000000000 R11: ffffed100f799e3c R12: 0000000000000003 [ 287.035230][ C1] R13: 0000000000000003 R14: ffff88807bccee40 R15: ffff88807d4f0000 [ 287.035241][ C1] FS: 00007f4d09f0c6c0(0000) GS:ffff888126200000(0000) knlGS:0000000000000000 [ 287.035255][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033 [ 287.035266][ C1] CR2: 000055de28bfa168 CR3: 000000002732c000 CR4: 00000000003526f0 [ 287.035280][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000 [ 287.035290][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400 [ 287.035300][ C1] Call Trace: [ 287.035307][ C1] [ 287.035315][ C1] lock_release+0x27a/0x3e0 [ 287.035338][ C1] ? ext4_mark_iloc_dirty+0x55a/0x1ca0 [ 287.035363][ C1] _raw_spin_unlock+0x16/0x50 [ 287.035378][ C1] ext4_mark_iloc_dirty+0x55a/0x1ca0 [ 287.035406][ C1] ? ext4_reserve_inode_write+0x2cf/0x330 [ 287.035430][ C1] __ext4_mark_inode_dirty+0x4be/0x700 [ 287.035451][ C1] ext4_dirty_inode+0xd0/0x110 [ 287.035473][ C1] ? __pfx_ext4_dirty_inode+0x10/0x10 [ 287.035494][ C1] __mark_inode_dirty+0x2ce/0xdf0 [ 287.035513][ C1] ext4_xattr_block_set+0x12ca/0x2ac0 [ 287.035548][ C1] ? __pfx_ext4_xattr_block_set+0x10/0x10 [ 287.035567][ C1] ? ext4_xattr_ibody_set+0x100/0x6a0 [ 287.035589][ C1] ext4_xattr_set_handle+0xdfb/0x1590 [ 287.035615][ C1] ? __pfx_ext4_xattr_set_handle+0x10/0x10 [ 287.035638][ C1] ? smack_inode_init_security+0x631/0x760 [ 287.035665][ C1] ext4_initxattrs+0x9f/0x110 [ 287.035682][ C1] security_inode_init_security+0x29d/0x3f0 [ 287.035708][ C1] ? __pfx_ext4_initxattrs+0x10/0x10 [ 287.035724][ C1] ? __pfx_security_inode_init_security+0x10/0x10 [ 287.035748][ C1] ? _raw_spin_unlock+0x28/0x50 [ 287.035762][ C1] ? insert_inode_locked+0x39a/0x410 [ 287.035781][ C1] __ext4_new_inode+0x3257/0x3bd0 [ 287.035812][ C1] ? __pfx___ext4_new_inode+0x10/0x10 [ 287.035835][ C1] ? __pfx___dquot_initialize+0x10/0x10 [ 287.035859][ C1] ? d_splice_alias+0x111/0x330 [ 287.035878][ C1] ? ext4_lookup+0x2b9/0x6c0 [ 287.035894][ C1] ext4_create+0x22d/0x460 [ 287.035914][ C1] ? __pfx_ext4_create+0x10/0x10 [ 287.035931][ C1] ? bpf_lsm_inode_create+0x9/0x20 [ 287.035950][ C1] ? __pfx_ext4_create+0x10/0x10 [ 287.035966][ C1] path_openat+0x14f1/0x3830 [ 287.036003][ C1] ? __pfx_path_openat+0x10/0x10 [ 287.036021][ C1] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.036045][ C1] do_filp_open+0x1fa/0x410 [ 287.036072][ C1] ? __pfx_do_filp_open+0x10/0x10 [ 287.036100][ C1] ? _raw_spin_unlock+0x28/0x50 [ 287.036114][ C1] ? alloc_fd+0x64c/0x6c0 [ 287.036141][ C1] do_sys_openat2+0x121/0x1c0 [ 287.036158][ C1] ? __pfx_ptrace_notify+0x10/0x10 [ 287.036181][ C1] ? __pfx_do_sys_openat2+0x10/0x10 [ 287.036199][ C1] ? rcu_is_watching+0x15/0xb0 [ 287.036226][ C1] __x64_sys_creat+0x8f/0xc0 [ 287.036245][ C1] do_syscall_64+0xf6/0x210 [ 287.036265][ C1] ? clear_bhb_loop+0x45/0xa0 [ 287.036283][ C1] entry_SYSCALL_64_after_hwframe+0x77/0x7f [ 287.036299][ C1] RIP: 0033:0x7f4d09f58409 [ 287.036315][ C1] Code: 28 00 00 00 75 05 48 83 c4 28 c3 e8 81 18 00 00 90 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 b0 ff ff ff f7 d8 64 89 01 48 [ 287.036328][ C1] RSP: 002b:00007f4d09f0c168 EFLAGS: 00000246 ORIG_RAX: 0000000000000055 [ 287.036344][ C1] RAX: ffffffffffffffda RBX: 00007f4d09fdf6a8 RCX: 00007f4d09f58409 [ 287.036356][ C1] RDX: ffffffffffffffb0 RSI: 0000000000000182 RDI: 0000200000000000 [ 287.036367][ C1] RBP: 00007f4d09fdf6a0 R08: 00007f4d09f0c6c0 R09: 0000000000000000 [ 287.036378][ C1] R10: 00007f4d09f0c6c0 R11: 0000000000000246 R12: 00007f4d09fdf6ac [ 287.036389][ C1] R13: 0000000000000006 R14: 00007ffea48d8b00 R15: 00007ffea48d8be8 [ 287.036407][ C1] [ 287.036414][ C1] INFO: NMI handler (nmi_cpu_backtrace_handler) took too long to run: 1.341 msecs [ 287.037079][ T31] Kernel panic - not syncing: hung_task: blocked tasks [ 287.037096][ T31] CPU: 0 UID: 0 PID: 31 Comm: khungtaskd Not tainted 6.15.0-rc5-syzkaller-00204-g0e1329d4045c #0 PREEMPT(full) [ 287.037122][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 05/07/2025 [ 287.037135][ T31] Call Trace: [ 287.037144][ T31] [ 287.037153][ T31] dump_stack_lvl+0x99/0x250 [ 287.037185][ T31] ? __asan_memcpy+0x40/0x70 [ 287.037212][ T31] ? __pfx_dump_stack_lvl+0x10/0x10 [ 287.037241][ T31] ? __pfx__printk+0x10/0x10 [ 287.037288][ T31] panic+0x2db/0x790 [ 287.037331][ T31] ? __pfx_panic+0x10/0x10 [ 287.037356][ T31] ? tick_nohz_tick_stopped+0x86/0xb0 [ 287.037395][ T31] ? preempt_schedule_thunk+0x16/0x30 [ 287.037419][ T31] ? nmi_trigger_cpumask_backtrace+0x2b6/0x300 [ 287.037461][ T31] watchdog+0x102d/0x1030 [ 287.037489][ T31] ? watchdog+0x1de/0x1030 [ 287.037522][ T31] kthread+0x70e/0x8a0 [ 287.037551][ T31] ? __pfx_watchdog+0x10/0x10 [ 287.037575][ T31] ? __pfx_kthread+0x10/0x10 [ 287.037600][ T31] ? __pfx_kthread+0x10/0x10 [ 287.037622][ T31] ? _raw_spin_unlock_irq+0x23/0x50 [ 287.037644][ T31] ? lockdep_hardirqs_on+0x9c/0x150 [ 287.037668][ T31] ? __pfx_kthread+0x10/0x10 [ 287.037689][ T31] ret_from_fork+0x4b/0x80 [ 287.037710][ T31] ? __pfx_kthread+0x10/0x10 [ 287.037733][ T31] ret_from_fork_asm+0x1a/0x30 [ 287.037782][ T31] [ 287.632730][ T31] Kernel Offset: disabled [ 287.637057][ T31] Rebooting in 86400 seconds..