./strace-static-x86_64 -e \!wait4,clock_nanosleep,nanosleep -s 100 -x -f ./syz-executor1452144088
<...>
Warning: Permanently added '10.128.1.135' (ED25519) to the list of known hosts.
execve("./syz-executor1452144088", ["./syz-executor1452144088"], 0x7ffebd9fc2a0 /* 10 vars */) = 0
brk(NULL) = 0x555556313000
brk(0x555556313d40) = 0x555556313d40
arch_prctl(ARCH_SET_FS, 0x5555563133c0) = 0
set_tid_address(0x555556313690) = 5035
set_robust_list(0x5555563136a0, 24) = 0
rseq(0x555556313ce0, 0x20, 0, 0x53053053) = 0
prlimit64(0, RLIMIT_STACK, NULL, {rlim_cur=8192*1024, rlim_max=RLIM64_INFINITY}) = 0
readlink("/proc/self/exe", "/root/syz-executor1452144088", 4096) = 28
getrandom("\x18\x00\xb1\x15\x0f\xd9\xe9\xc7", 8, GRND_NONBLOCK) = 8
brk(NULL) = 0x555556313d40
brk(0x555556334d40) = 0x555556334d40
brk(0x555556335000) = 0x555556335000
mprotect(0x7ff4fcf77000, 16384, PROT_READ) = 0
mmap(0x1ffff000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x1ffff000
mmap(0x20000000, 16777216, PROT_READ|PROT_WRITE|PROT_EXEC, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x20000000
mmap(0x21000000, 4096, PROT_NONE, MAP_PRIVATE|MAP_FIXED|MAP_ANONYMOUS, -1, 0) = 0x21000000
mkdir("./syzkaller.9L4R0L", 0700) = 0
chmod("./syzkaller.9L4R0L", 0777) = 0
chdir("./syzkaller.9L4R0L") = 0
mkdir("./0", 0777) = 0
openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 3
ioctl(3, LOOP_CLR_FD) = -1 ENXIO (No such device or address)
close(3) = 0
clone(child_stack=NULL, flags=CLONE_CHILD_CLEARTID|CLONE_CHILD_SETTID|SIGCHLD, child_tidptr=0x555556313690) = 5036
./strace-static-x86_64: Process 5036 attached
[pid 5036] set_robust_list(0x5555563136a0, 24) = 0
[pid 5036] chdir("./0") = 0
[pid 5036] prctl(PR_SET_PDEATHSIG, SIGKILL) = 0
[pid 5036] setpgid(0, 0) = 0
[pid 5036] openat(AT_FDCWD, "/proc/self/oom_score_adj", O_WRONLY|O_CLOEXEC) = 3
[pid 5036] write(3, "1000", 4) = 4
[pid 5036] close(3) = 0
[pid 5036] symlink("/dev/binderfs", "./binderfs") = 0
[pid 5036] futex(0x7ff4fcf7d6cc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid 5036] rt_sigaction(SIGRT_1, {sa_handler=0x7ff4fcf1aff0, sa_mask=[], sa_flags=SA_RESTORER|SA_ONSTACK|SA_RESTART|SA_SIGINFO, sa_restorer=0x7ff4fcf0c1a0}, NULL, 8) = 0
[pid 5036] rt_sigprocmask(SIG_UNBLOCK, [RTMIN RT_1], NULL, 8) = 0
[pid 5036] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff4fce91000
[pid 5036] mprotect(0x7ff4fce92000, 131072, PROT_READ|PROT_WRITE) = 0
[pid 5036] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid 5036] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7ff4fceb1990, parent_tid=0x7ff4fceb1990, exit_signal=0, stack=0x7ff4fce91000, stack_size=0x20300, tls=0x7ff4fceb16c0}./strace-static-x86_64: Process 5038 attached
=> {parent_tid=[5038]}, 88) = 5038
[pid 5038] rseq(0x7ff4fceb1fe0, 0x20, 0, 0x53053053) = 0
[pid 5038] set_robust_list(0x7ff4fceb19a0, 24 <unfinished ...>
[pid 5036] rt_sigprocmask(SIG_SETMASK, [], <unfinished ...>
[pid 5038] <... set_robust_list resumed>) = 0
[pid 5038] rt_sigprocmask(SIG_SETMASK, [], <unfinished ...>
[pid 5036] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid 5038] <... rt_sigprocmask resumed>NULL, 8) = 0
[pid 5036] futex(0x7ff4fcf7d6c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid 5038] openat(AT_FDCWD, "/proc/crypto", O_RDONLY <unfinished ...>
[pid 5036] <... futex resumed>) = 0
[pid 5036] futex(0x7ff4fcf7d6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid 5038] <... openat resumed>) = 3
[pid 5038] futex(0x7ff4fcf7d6cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid 5036] <... futex resumed>) = 0
[pid 5036] futex(0x7ff4fcf7d6c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid 5038] <... futex resumed>) = 1
[pid 5036] <... futex resumed>) = 0
[pid 5036] futex(0x7ff4fcf7d6cc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid 5038] read(3, "name : pkcs1pad(rsa,sha256)\ndriver : pkcs1pad(rsa-generic,sha256)\nmodule : kerne"..., 8241) = 3943
[pid 5038] futex(0x7ff4fcf7d6cc, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid 5036] <... futex resumed>) = 0
[pid 5036] futex(0x7ff4fcf7d6c8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid 5038] <... futex resumed>) = 1
[pid 5036] <... futex resumed>) = 0
[pid 5036] futex(0x7ff4fcf7d6dc, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid 5038] memfd_create("syzkaller", 0 <unfinished ...>
[pid 5036] mmap(NULL, 135168, PROT_NONE, MAP_PRIVATE|MAP_ANONYMOUS|MAP_STACK, -1, 0) = 0x7ff4fce70000
[pid 5036] mprotect(0x7ff4fce71000, 131072, PROT_READ|PROT_WRITE) = 0
[pid 5036] rt_sigprocmask(SIG_BLOCK, ~[], [], 8) = 0
[pid 5036] clone3({flags=CLONE_VM|CLONE_FS|CLONE_FILES|CLONE_SIGHAND|CLONE_THREAD|CLONE_SYSVSEM|CLONE_SETTLS|CLONE_PARENT_SETTID|CLONE_CHILD_CLEARTID, child_tid=0x7ff4fce90990, parent_tid=0x7ff4fce90990, exit_signal=0, stack=0x7ff4fce70000, stack_size=0x20300, tls=0x7ff4fce906c0} => {parent_tid=[5039]}, 88) = 5039
[pid 5036] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid 5036] futex(0x7ff4fcf7d6d8, FUTEX_WAKE_PRIVATE, 1000000) = 0
[pid 5036] futex(0x7ff4fcf7d6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000}./strace-static-x86_64: Process 5039 attached
<unfinished ...>
[pid 5039] rseq(0x7ff4fce90fe0, 0x20, 0, 0x53053053) = 0
[pid 5039] set_robust_list(0x7ff4fce909a0, 24) = 0
[pid 5039] rt_sigprocmask(SIG_SETMASK, [], NULL, 8) = 0
[pid 5039] open("./file0", O_RDONLY) = -1 ENOENT (No such file or directory)
[pid 5039] futex(0x7ff4fcf7d6dc, FUTEX_WAKE_PRIVATE, 1000000) = 1
[pid 5036] <... futex resumed>) = 0
[pid 5039] futex(0x7ff4fcf7d6d8, FUTEX_WAIT_PRIVATE, 0, NULL) = -1 EAGAIN (Resource temporarily unavailable)
[pid 5036] futex(0x7ff4fcf7d6d8, FUTEX_WAKE_PRIVATE, 1000000 <unfinished ...>
[pid 5039] sync( <unfinished ...>
[pid 5036] <... futex resumed>) = 0
[pid 5036] futex(0x7ff4fcf7d6dc, FUTEX_WAIT_PRIVATE, 0, {tv_sec=0, tv_nsec=50000000} <unfinished ...>
[pid 5038] <... memfd_create resumed>) = 4
[pid 5038] mmap(NULL, 138412032, PROT_READ|PROT_WRITE, MAP_PRIVATE|MAP_ANONYMOUS, -1, 0) = 0x7ff4f4a70000
[pid 5038] write(4, "\xeb\x76\x90\x45\x58\x46\x41\x54\x20\x20\x20\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x00\x01\x00\x00\x00\x00\x00\x00\x80\x00\x00\x00\x08\x00\x00\x00\x88\x00\x00\x00\x0f\x00\x00\x00\x05\x00\x00\x00"..., 131329) = 131329
[pid 5038] munmap(0x7ff4f4a70000, 138412032) = 0
[pid 5038] openat(AT_FDCWD, "/dev/loop0", O_RDWR) = 5
[pid 5038] ioctl(5, LOOP_SET_FD, 4) = 0
[pid 5038] close(4) = 0
[pid 5038] mkdir("./file0", 0777) = 0
[pid 5038] mount("/dev/loop0", "./file0", "exfat", MS_NODIRATIME, "dmask=00000000000000000000007,utf8,iocharset=iso8859-1,allow_utime=00000000000000000002001,fmask=000"... <unfinished ...>
[pid 5036] <... futex resumed>) = -1 ETIMEDOUT (Connection timed out)
[ 54.439764][ T5038] syz-executor145[5038]: memfd_create() called without MFD_EXEC or MFD_NOEXEC_SEAL set
[ 54.459351][ T5038] loop0: detected capacity change from 0 to 256
[ 54.468354][ T5038] exfat: Deprecated parameter 'utf8'
[pid 5036] exit_group(0) = ?
[pid 5035] kill(-5036, SIGKILL) = 0
[pid 5035] kill(5036, SIGKILL) = 0
[pid 5035] openat(AT_FDCWD, "/sys/fs/fuse/connections", O_RDONLY|O_NONBLOCK|O_CLOEXEC|O_DIRECTORY) = 3
[pid 5035] newfstatat(3, "", {st_mode=S_IFDIR|0755, st_size=0, ...}, AT_EMPTY_PATH) = 0
[pid 5035] getdents64(3, 0x555556314730 /* 2 entries */, 32768) = 48
[pid 5035] getdents64(3, 0x555556314730 /* 0 entries */, 32768) = 0
[pid 5035] close(3) = 0
[ 76.008930][ T774] cfg80211: failed to load regulatory.db
[ 285.927248][ T29] INFO: task syz-executor145:5039 blocked for more than 143 seconds.
[ 285.935479][ T29] Not tainted 6.6.0-rc7-syzkaller-00142-g888cf78c29e2 #0
[ 285.943072][ T29] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 285.952749][ T29] task:syz-executor145 state:D stack:28320 pid:5039 ppid:5035 flags:0x00004006
[ 285.962271][ T29] Call Trace:
[ 285.965552][ T29] <TASK>
[ 285.968791][ T29] __schedule+0xee1/0x5a10
[ 285.973245][ T29] ? lockdep_hardirqs_on_prepare+0x410/0x410
[ 285.979571][ T29] ? print_usage_bug.part.0+0x670/0x670
[ 285.985140][ T29] ? io_schedule_timeout+0x150/0x150
[ 285.990783][ T29] ? rwsem_down_read_slowpath+0x2c5/0xb20
[ 285.996519][ T29] schedule+0xe7/0x1b0
[ 286.000970][ T29] schedule_preempt_disabled+0x13/0x20
[ 286.006445][ T29] rwsem_down_read_slowpath+0x61e/0xb20
[ 286.012207][ T29] ? down_write+0x200/0x200
[ 286.016729][ T29] ? preempt_count_sub+0x150/0x150
[ 286.022312][ T29] ? __ia32_sys_tee+0x1f0/0x1f0
[ 286.027377][ T29] down_read+0xf0/0x470
[ 286.031546][ T29] ? down_write_killable+0x250/0x250
[ 286.036828][ T29] ? sync_inodes_sb+0x6b4/0xa30
[ 286.042293][ T29] ? __ia32_sys_tee+0x1f0/0x1f0
[ 286.047388][ T29] super_lock+0x23c/0x380
[ 286.051741][ T29] ? compare_single+0x10/0x10
[ 286.056420][ T29] ? reacquire_held_locks+0x4b0/0x4b0
[ 286.062467][ T29] ? do_raw_spin_lock+0x12e/0x2b0
[ 286.067813][ T29] ? spin_bug+0x1d0/0x1d0
[ 286.072158][ T29] ? reacquire_held_locks+0x4b0/0x4b0
[ 286.077928][ T29] ? __ia32_sys_tee+0x1f0/0x1f0
[ 286.082788][ T29] iterate_supers+0xb9/0x230
[ 286.087781][ T29] ksys_sync+0x8a/0x150
[ 286.091949][ T29] ? vfs_fsync+0x200/0x200
[ 286.096361][ T29] ? lockdep_hardirqs_on+0x7d/0x100
[ 286.102053][ T29] ? _raw_spin_unlock_irq+0x2e/0x50
[ 286.107483][ T29] ? ptrace_notify+0xf4/0x130
[ 286.112166][ T29] ? syscall_trace_enter.constprop.0+0xaf/0x1e0
[ 286.118628][ T29] __do_sys_sync+0xe/0x20
[ 286.122970][ T29] do_syscall_64+0x38/0xb0
[ 286.127820][ T29] entry_SYSCALL_64_after_hwframe+0x63/0xcd
[ 286.133727][ T29] RIP: 0033:0x7ff4fcef4bd9
[ 286.138532][ T29] RSP: 002b:00007ff4fce90218 EFLAGS: 00000246 ORIG_RAX: 00000000000000a2
[ 286.146949][ T29] RAX: ffffffffffffffda RBX: 00007ff4fcf7d6d8 RCX: 00007ff4fcef4bd9
[ 286.155261][ T29] RDX: ffffffffffffffb0 RSI: 0000000000000000 RDI: 0000000000000080
[ 286.163485][ T29] RBP: 00007ff4fcf7d6d0 R08: 0000000000000000 R09: 0000000000000000
[ 286.171985][ T29] R10: 0000000000000000 R11: 0000000000000246 R12: 00007ff4fcf4a5c0
[ 286.180202][ T29] R13: 00007ff4fcf490c0 R14: 00007ff4fcf4906b R15: 0030656c69662f2e
[ 286.188433][ T29] </TASK>
[ 286.191481][ T29]
[ 286.191481][ T29] Showing all locks held in the system:
[ 286.199711][ T29] 1 lock held by khungtaskd/29:
[ 286.204562][ T29] #0: ffffffff8cbab2e0 (rcu_read_lock){....}-{1:2}, at: debug_show_all_locks+0x75/0x340
[ 286.214790][ T29] 2 locks held by getty/4787:
[ 286.219677][ T29] #0: ffff888025e540a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_ref_wait+0x24/0x80
[ 286.229672][ T29] #1: ffffc90002f062f0 (&ldata->atomic_read_lock){+.+.}-{3:3}, at: n_tty_read+0xfc5/0x1480
[ 286.239999][ T29] 1 lock held by syz-executor145/5038:
[ 286.245462][ T29] 1 lock held by syz-executor145/5039:
[ 286.251271][ T29] #0: ffff88807a3d40e0 (&type->s_umount_key#60){++++}-{3:3}, at: super_lock+0x23c/0x380
[ 286.261407][ T29]
[ 286.263734][ T29] =============================================
[ 286.263734][ T29]
[ 286.272612][ T29] NMI backtrace for cpu 1
[ 286.276939][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.6.0-rc7-syzkaller-00142-g888cf78c29e2 #0
[ 286.286737][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023
[ 286.296788][ T29] Call Trace:
[ 286.300060][ T29] <TASK>
[ 286.302982][ T29] dump_stack_lvl+0xd9/0x1b0
[ 286.307583][ T29] nmi_cpu_backtrace+0x277/0x380
[ 286.312528][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0
[ 286.317729][ T29] nmi_trigger_cpumask_backtrace+0x299/0x300
[ 286.323720][ T29] watchdog+0xf87/0x1210
[ 286.327970][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90
[ 286.333945][ T29] ? lockdep_hardirqs_on+0x7d/0x100
[ 286.339143][ T29] ? __kthread_parkme+0x14b/0x220
[ 286.344162][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90
[ 286.350136][ T29] kthread+0x33c/0x440
[ 286.354198][ T29] ? _raw_spin_unlock_irq+0x23/0x50
[ 286.359401][ T29] ? kthread_complete_and_exit+0x40/0x40
[ 286.365033][ T29] ret_from_fork+0x45/0x80
[ 286.369447][ T29] ? kthread_complete_and_exit+0x40/0x40
[ 286.375077][ T29] ret_from_fork_asm+0x11/0x20
[ 286.379853][ T29] </TASK>
[ 286.382933][ T29] Sending NMI from CPU 1 to CPUs 0:
[ 286.388173][ C0] NMI backtrace for cpu 0
[ 286.388181][ C0] CPU: 0 PID: 1047 Comm: kworker/u4:6 Not tainted 6.6.0-rc7-syzkaller-00142-g888cf78c29e2 #0
[ 286.388194][ C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023
[ 286.388201][ C0] Workqueue: events_unbound toggle_allocation_gate
[ 286.388219][ C0] RIP: 0010:__default_send_IPI_dest_field+0x35/0xf0
[ 286.388238][ C0] Code: 89 fc 89 d5 53 48 83 ec 08 83 fe 02 74 60 a0 60 f8 eb ff ff fb ff ff 84 c0 74 08 3c 03 0f 8e 86 00 00 00 8b 04 25 00 c3 5f ff <48> bb 60 f8 eb ff ff fb ff ff f6 c4 10 74 19 f3 90 0f b6 03 84 c0
[ 286.388249][ C0] RSP: 0018:ffffc900048178e0 EFLAGS: 00000046
[ 286.388258][ C0] RAX: 00000000000008fb RBX: 0000000000000002 RCX: ffffffff818e90cb
[ 286.388265][ C0] RDX: 0000000000000800 RSI: 00000000000000fb RDI: 0000000002000000
[ 286.388272][ C0] RBP: 0000000000000800 R08: 0000000000000000 R09: fffffbfff1d983da
[ 286.388279][ C0] R10: ffffffff8ecc1ed7 R11: 0000000000000000 R12: 0000000002000000
[ 286.388286][ C0] R13: dffffc0000000000 R14: 0000000000000001 R15: ffff8880b983d8d0
[ 286.388297][ C0] FS: 0000000000000000(0000) GS:ffff8880b9800000(0000) knlGS:0000000000000000
[ 286.388309][ C0] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 286.388316][ C0] CR2: 00005584fee07a90 CR3: 000000000c976000 CR4: 0000000000350ef0
[ 286.388324][ C0] Call Trace:
[ 286.388328][ C0] <NMI>
[ 286.388332][ C0] ? show_regs+0x8f/0xa0
[ 286.388346][ C0] ? nmi_cpu_backtrace+0x1d4/0x380
[ 286.388361][ C0] ? nmi_cpu_backtrace_handler+0xc/0x10
[ 286.388377][ C0] ? nmi_handle+0x1a6/0x570
[ 286.388390][ C0] ? x86_pmu_event_mapped+0x1c0/0x1c0
[ 286.388410][ C0] ? __default_send_IPI_dest_field+0x35/0xf0
[ 286.388425][ C0] ? default_do_nmi+0x69/0x160
[ 286.388443][ C0] ? exc_nmi+0x171/0x1e0
[ 286.388459][ C0] ? end_repeat_nmi+0x16/0x31
[ 286.388479][ C0] ? trace_hardirqs_off+0x5b/0x120
[ 286.388493][ C0] ? __default_send_IPI_dest_field+0x35/0xf0
[ 286.388509][ C0] ? __default_send_IPI_dest_field+0x35/0xf0
[ 286.388525][ C0] ? __default_send_IPI_dest_field+0x35/0xf0
[ 286.388540][ C0] </NMI>
[ 286.388543][ C0] <TASK>
[ 286.388546][ C0] ? _flat_send_IPI_mask+0x30/0x70
[ 286.388558][ C0] ? on_each_cpu_cond_mask+0x40/0x90
[ 286.388574][ C0] _flat_send_IPI_mask+0x40/0x70
[ 286.388587][ C0] smp_call_function_many_cond+0x12df/0x1570
[ 286.388605][ C0] ? __text_poke+0xc90/0xc90
[ 286.388616][ C0] ? __kmem_cache_alloc_node+0xc3/0x340
[ 286.388635][ C0] ? generic_smp_call_function_single_interrupt+0x20/0x20
[ 286.388654][ C0] ? apply_relocation+0x830/0x830
[ 286.388665][ C0] ? __text_poke+0xc90/0xc90
[ 286.388676][ C0] on_each_cpu_cond_mask+0x40/0x90
[ 286.388692][ C0] ? __kmem_cache_alloc_node+0xc3/0x340
[ 286.388710][ C0] text_poke_bp_batch+0x746/0x960
[ 286.388722][ C0] ? __kmem_cache_alloc_node+0xc4/0x340
[ 286.388741][ C0] ? do_sync_core+0x40/0x40
[ 286.388750][ C0] ? __jump_label_patch+0x1db/0x3f0
[ 286.388766][ C0] ? text_poke_queue+0xef/0x180
[ 286.388780][ C0] ? arch_jump_label_transform_queue+0xc0/0x110
[ 286.388798][ C0] text_poke_finish+0x30/0x40
[ 286.388810][ C0] arch_jump_label_transform_apply+0x1c/0x30
[ 286.388827][ C0] jump_label_update+0x32e/0x410
[ 286.388846][ C0] static_key_enable_cpuslocked+0x1b5/0x270
[ 286.388865][ C0] static_key_enable+0x1a/0x20
[ 286.388886][ C0] toggle_allocation_gate+0xf4/0x250
[ 286.388901][ C0] ? wake_up_kfence_timer+0x30/0x30
[ 286.388919][ C0] process_one_work+0x884/0x15c0
[ 286.388936][ C0] ? lock_sync+0x190/0x190
[ 286.388952][ C0] ? init_worker_pool+0x770/0x770
[ 286.388968][ C0] ? assign_work+0x1a0/0x240
[ 286.388981][ C0] worker_thread+0x8b9/0x1290
[ 286.388999][ C0] ? process_one_work+0x15c0/0x15c0
[ 286.389013][ C0] kthread+0x33c/0x440
[ 286.389024][ C0] ? _raw_spin_unlock_irq+0x23/0x50
[ 286.389038][ C0] ? kthread_complete_and_exit+0x40/0x40
[ 286.389051][ C0] ret_from_fork+0x45/0x80
[ 286.389064][ C0] ? kthread_complete_and_exit+0x40/0x40
[ 286.389077][ C0] ret_from_fork_asm+0x11/0x20
[ 286.389097][ C0] </TASK>
[ 286.793697][ T29] Kernel panic - not syncing: hung_task: blocked tasks
[ 286.800545][ T29] CPU: 1 PID: 29 Comm: khungtaskd Not tainted 6.6.0-rc7-syzkaller-00142-g888cf78c29e2 #0
[ 286.810343][ T29] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/09/2023
[ 286.820396][ T29] Call Trace:
[ 286.823666][ T29] <TASK>
[ 286.826587][ T29] dump_stack_lvl+0xd9/0x1b0
[ 286.831187][ T29] panic+0x6a6/0x750
[ 286.835085][ T29] ? panic_smp_self_stop+0xa0/0xa0
[ 286.840199][ T29] ? lapic_can_unplug_cpu+0xa0/0xa0
[ 286.845402][ T29] ? preempt_schedule_thunk+0x1a/0x30
[ 286.850790][ T29] ? watchdog+0xd3e/0x1210
[ 286.855203][ T29] watchdog+0xd4f/0x1210
[ 286.859447][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90
[ 286.865420][ T29] ? lockdep_hardirqs_on+0x7d/0x100
[ 286.870618][ T29] ? __kthread_parkme+0x14b/0x220
[ 286.875639][ T29] ? proc_dohung_task_timeout_secs+0x90/0x90
[ 286.881617][ T29] kthread+0x33c/0x440
[ 286.885690][ T29] ? _raw_spin_unlock_irq+0x23/0x50
[ 286.890894][ T29] ? kthread_complete_and_exit+0x40/0x40
[ 286.896528][ T29] ret_from_fork+0x45/0x80
[ 286.900941][ T29] ? kthread_complete_and_exit+0x40/0x40
[ 286.906572][ T29] ret_from_fork_asm+0x11/0x20
[ 286.911349][ T29] </TASK>
[ 286.914597][ T29] Kernel Offset: disabled
[ 286.918912][ T29] Rebooting in 86400 seconds..