Warning: Permanently added '10.128.0.209' (ED25519) to the list of known hosts.
2025/12/16 03:07:13 parsed 1 programs
[   79.836602][ T5827] cgroup: Unknown subsys name 'net'
[   80.026016][ T5827] cgroup: Unknown subsys name 'cpuset'
[   80.034503][ T5827] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   81.489821][ T5827] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k 
[   84.394783][ T5840] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[   85.860480][   T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   85.868904][   T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   85.876915][   T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   85.890980][   T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   85.904690][   T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   86.584235][   T24] cfg80211: failed to load regulatory.db
[   86.594076][  T999] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.602042][  T999] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   86.645866][ T2001] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   86.654969][ T2001] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   87.462451][ T5904] chnl_net:caif_netlink_parms(): no params data found
[   87.578001][ T5904] bridge0: port 1(bridge_slave_0) entered blocking state
[   87.585856][ T5904] bridge0: port 1(bridge_slave_0) entered disabled state
[   87.594642][ T5904] bridge_slave_0: entered allmulticast mode
[   87.601743][ T5904] bridge_slave_0: entered promiscuous mode
[   87.610510][ T5904] bridge0: port 2(bridge_slave_1) entered blocking state
[   87.617710][ T5904] bridge0: port 2(bridge_slave_1) entered disabled state
[   87.624955][ T5904] bridge_slave_1: entered allmulticast mode
[   87.632898][ T5904] bridge_slave_1: entered promiscuous mode
[   87.668180][ T5904] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   87.682285][ T5904] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   87.722435][ T5904] team0: Port device team_slave_0 added
[   87.733211][ T5904] team0: Port device team_slave_1 added
[   87.756449][ T5904] batman_adv: batadv0: Adding interface: batadv_slave_0
[   87.764323][ T5904] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.790363][ T5904] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   87.804524][ T5904] batman_adv: batadv0: Adding interface: batadv_slave_1
[   87.811477][ T5904] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   87.839565][ T5904] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   87.877745][ T5904] hsr_slave_0: entered promiscuous mode
[   87.884169][ T5904] hsr_slave_1: entered promiscuous mode
[   88.012836][ T5904] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   88.025642][ T5904] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   88.036108][ T5904] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   88.046431][ T5904] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   88.072075][ T5904] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.079262][ T5904] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.087184][ T5904] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.094288][ T5904] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.114591][ T2001] bridge0: port 1(bridge_slave_0) entered disabled state
[   88.122980][ T2001] bridge0: port 2(bridge_slave_1) entered disabled state
[   88.162609][ T5904] 8021q: adding VLAN 0 to HW filter on device bond0
[   88.180827][ T5904] 8021q: adding VLAN 0 to HW filter on device team0
[   88.195352][  T999] bridge0: port 1(bridge_slave_0) entered blocking state
[   88.202936][  T999] bridge0: port 1(bridge_slave_0) entered forwarding state
[   88.216566][ T2001] bridge0: port 2(bridge_slave_1) entered blocking state
[   88.223882][ T2001] bridge0: port 2(bridge_slave_1) entered forwarding state
[   88.374898][ T5904] 8021q: adding VLAN 0 to HW filter on device batadv0
[   88.413778][ T5904] veth0_vlan: entered promiscuous mode
[   88.425493][ T5904] veth1_vlan: entered promiscuous mode
[   88.454895][ T5904] veth0_macvtap: entered promiscuous mode
[   88.465301][ T5904] veth1_macvtap: entered promiscuous mode
[   88.483651][ T5904] batman_adv: batadv0: Interface activated: batadv_slave_0
[   88.498017][ T5904] batman_adv: batadv0: Interface activated: batadv_slave_1
[   88.511833][ T2001] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   88.521372][ T2001] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   88.535247][ T2001] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   88.544479][ T2001] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   88.679182][  T999] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.769210][  T999] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.856374][  T999] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   88.956279][  T999] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/16 03:07:24 executed programs: 0
[   89.228389][   T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[   89.236302][   T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[   89.249420][   T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[   89.257538][   T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[   89.265371][   T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[   89.408122][ T5933] chnl_net:caif_netlink_parms(): no params data found
[   89.474138][ T5933] bridge0: port 1(bridge_slave_0) entered blocking state
[   89.481326][ T5933] bridge0: port 1(bridge_slave_0) entered disabled state
[   89.488573][ T5933] bridge_slave_0: entered allmulticast mode
[   89.495690][ T5933] bridge_slave_0: entered promiscuous mode
[   89.504599][ T5933] bridge0: port 2(bridge_slave_1) entered blocking state
[   89.511717][ T5933] bridge0: port 2(bridge_slave_1) entered disabled state
[   89.519391][ T5933] bridge_slave_1: entered allmulticast mode
[   89.526602][ T5933] bridge_slave_1: entered promiscuous mode
[   89.554411][ T5933] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   89.566589][ T5933] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   89.595578][ T5933] team0: Port device team_slave_0 added
[   89.603715][ T5933] team0: Port device team_slave_1 added
[   89.635199][ T5933] batman_adv: batadv0: Adding interface: batadv_slave_0
[   89.642163][ T5933] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   89.669276][ T5933] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   89.685515][ T5933] batman_adv: batadv0: Adding interface: batadv_slave_1
[   89.692487][ T5933] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[   89.718832][ T5933] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   89.765318][ T5933] hsr_slave_0: entered promiscuous mode
[   89.771697][ T5933] hsr_slave_1: entered promiscuous mode
[   89.778537][ T5933] debugfs: 'hsr0' already exists in 'hsr'
[   89.785464][ T5933] Cannot create hsr debugfs directory
[   91.303267][   T52] Bluetooth: hci0: command tx timeout
[   91.476197][  T999] bridge_slave_1: left allmulticast mode
[   91.481940][  T999] bridge_slave_1: left promiscuous mode
[   91.489676][  T999] bridge0: port 2(bridge_slave_1) entered disabled state
[   91.501070][  T999] bridge_slave_0: left allmulticast mode
[   91.507570][  T999] bridge_slave_0: left promiscuous mode
[   91.514151][  T999] bridge0: port 1(bridge_slave_0) entered disabled state
[   91.736082][  T999] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[   91.747688][  T999] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[   91.757305][  T999] bond0 (unregistering): Released all slaves
[   91.872483][  T999] hsr_slave_0: left promiscuous mode
[   91.879924][  T999] hsr_slave_1: left promiscuous mode
[   91.886889][  T999] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[   91.895777][  T999] batman_adv: batadv0: Removing interface: batadv_slave_0
[   91.904764][  T999] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[   91.912175][  T999] batman_adv: batadv0: Removing interface: batadv_slave_1
[   91.935213][  T999] veth1_macvtap: left promiscuous mode
[   91.940970][  T999] veth0_macvtap: left promiscuous mode
[   91.947434][  T999] veth1_vlan: left promiscuous mode
[   91.953074][  T999] veth0_vlan: left promiscuous mode
[   92.430083][  T999] team0 (unregistering): Port device team_slave_1 removed
[   92.456484][  T999] team0 (unregistering): Port device team_slave_0 removed
[   92.940001][ T5933] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   92.954637][ T5933] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   92.967510][ T5933] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   92.981755][ T5933] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   93.304033][ T5933] 8021q: adding VLAN 0 to HW filter on device bond0
[   93.351971][ T5933] 8021q: adding VLAN 0 to HW filter on device team0
[   93.370970][   T13] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.378139][   T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[   93.393369][   T52] Bluetooth: hci0: command tx timeout
[   93.401048][ T2001] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.408276][ T2001] bridge0: port 2(bridge_slave_1) entered forwarding state
[   93.564797][ T5933] 8021q: adding VLAN 0 to HW filter on device batadv0
[   93.602126][ T5933] veth0_vlan: entered promiscuous mode
[   93.614024][ T5933] veth1_vlan: entered promiscuous mode
[   93.641918][ T5933] veth0_macvtap: entered promiscuous mode
[   93.651004][ T5933] veth1_macvtap: entered promiscuous mode
[   93.670633][ T5933] batman_adv: batadv0: Interface activated: batadv_slave_0
[   93.685468][ T5933] batman_adv: batadv0: Interface activated: batadv_slave_1
[   93.698988][   T61] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   93.709840][   T61] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   93.719916][   T61] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   93.734017][   T61] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   93.792053][   T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.806021][   T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   93.829554][  T999] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   93.838917][  T999] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   95.463245][   T52] Bluetooth: hci0: command tx timeout
[   96.890618][ T5982] ------------[ cut here ]------------
[   96.891106][ T5982] 
[   96.891111][ T5982] ======================================================
[   96.891114][ T5982] WARNING: possible circular locking dependency detected
[   96.891118][ T5982] syzkaller #0 Not tainted
[   96.891122][ T5982] ------------------------------------------------------
[   96.891126][ T5982] syz.0.17/5982 is trying to acquire lock:
[   96.891130][ T5982] ffffffff8df35980 (console_owner){....}-{0:0}, at: console_flush_all+0x131/0xb60
[   96.891158][ T5982] 
[   96.891158][ T5982] but task is already holding lock:
[   96.891161][ T5982] ffff8880b873a918 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[   96.891179][ T5982] 
[   96.891179][ T5982] which lock already depends on the new lock.
[   96.891179][ T5982] 
[   96.891182][ T5982] 
[   96.891182][ T5982] the existing dependency chain (in reverse order) is:
[   96.891185][ T5982] 
[   96.891185][ T5982] -> #5 (&rq->__lock){-.-.}-{2:2}:
[   96.891203][ T5982]        _raw_spin_lock_nested+0x32/0x50
[   96.891213][ T5982]        raw_spin_rq_lock_nested+0x2a/0x140
[   96.891220][ T5982]        task_rq_lock+0xbc/0x470
[   96.891227][ T5982]        cgroup_move_task+0x92/0x2a0
[   96.891237][ T5982]        css_set_move_task+0x658/0x9e0
[   96.891245][ T5982]        cgroup_post_fork+0x1ef/0x7a0
[   96.891252][ T5982]        copy_process+0x3614/0x3950
[   96.891260][ T5982]        kernel_clone+0x21e/0x820
[   96.891269][ T5982]        user_mode_thread+0xdd/0x140
[   96.891277][ T5982]        rest_init+0x23/0x300
[   96.891288][ T5982]        start_kernel+0x3a7/0x400
[   96.891297][ T5982]        x86_64_start_reservations+0x24/0x30
[   96.891309][ T5982]        x86_64_start_kernel+0x143/0x1c0
[   96.891319][ T5982]        common_startup_64+0x13e/0x147
[   96.891328][ T5982] 
[   96.891328][ T5982] -> #4 (&p->pi_lock){-.-.}-{2:2}:
[   96.891339][ T5982]        _raw_spin_lock_irqsave+0xa7/0xf0
[   96.891347][ T5982]        try_to_wake_up+0x67/0x12b0
[   96.891356][ T5982]        create_worker+0x503/0x720
[   96.891367][ T5982]        workqueue_init+0x3ea/0x690
[   96.891375][ T5982]        kernel_init_freeable+0x302/0x4b0
[   96.891384][ T5982]        kernel_init+0x1d/0x1d0
[   96.891394][ T5982]        ret_from_fork+0x599/0xb30
[   96.891401][ T5982]        ret_from_fork_asm+0x1a/0x30
[   96.891411][ T5982] 
[   96.891411][ T5982] -> #3 (&pool->lock){-.-.}-{2:2}:
[   96.891422][ T5982]        _raw_spin_lock+0x2e/0x40
[   96.891429][ T5982]        __queue_work+0x7eb/0xf90
[   96.891436][ T5982]        queue_work_on+0x181/0x270
[   96.891444][ T5982]        rpm_suspend+0xe44/0x1700
[   96.891451][ T5982]        __pm_runtime_idle+0x12f/0x1a0
[   96.891458][ T5982]        __device_attach+0x342/0x430
[   96.891465][ T5982]        device_initial_probe+0xa1/0xd0
[   96.891473][ T5982]        bus_probe_device+0x12a/0x220
[   96.891483][ T5982]        device_add+0x7b6/0xb80
[   96.891489][ T5982]        serial_base_port_add+0x18f/0x260
[   96.891497][ T5982]        serial_core_register_port+0x369/0x2800
[   96.891511][ T5982]        serial8250_register_8250_port+0x1658/0x1fd0
[   96.891526][ T5982]        serial_pnp_probe+0x527/0x7d0
[   96.891547][ T5982]        pnp_device_probe+0x30b/0x4c0
[   96.891560][ T5982]        really_probe+0x26d/0xad0
[   96.891570][ T5982]        __driver_probe_device+0x18c/0x320
[   96.891579][ T5982]        driver_probe_device+0x4f/0x240
[   96.891589][ T5982]        __driver_attach+0x349/0x650
[   96.891598][ T5982]        bus_for_each_dev+0x233/0x2b0
[   96.891611][ T5982]        bus_add_driver+0x345/0x670
[   96.891624][ T5982]        driver_register+0x23a/0x320
[   96.891634][ T5982]        serial8250_init+0x8f/0x160
[   96.891643][ T5982]        do_one_initcall+0x1fb/0x820
[   96.891654][ T5982]        do_initcall_level+0x104/0x190
[   96.891666][ T5982]        do_initcalls+0x59/0xa0
[   96.891679][ T5982]        kernel_init_freeable+0x334/0x4b0
[   96.891694][ T5982]        kernel_init+0x1d/0x1d0
[   96.891710][ T5982]        ret_from_fork+0x599/0xb30
[   96.891720][ T5982]        ret_from_fork_asm+0x1a/0x30
[   96.891736][ T5982] 
[   96.891736][ T5982] -> #2 (&dev->power.lock){-.-.}-{3:3}:
[   96.891754][ T5982]        _raw_spin_lock_irqsave+0xa7/0xf0
[   96.891766][ T5982]        __pm_runtime_resume+0x10f/0x180
[   96.891778][ T5982]        __uart_start+0x171/0x460
[   96.891796][ T5982]        uart_write+0xdc/0x130
[   96.891806][ T5982]        n_tty_write+0xd78/0x12a0
[   96.891820][ T5982]        file_tty_write+0x559/0xa20
[   96.891837][ T5982]        vfs_write+0x5c9/0xb30
[   96.891849][ T5982]        ksys_write+0x145/0x250
[   96.891860][ T5982]        do_syscall_64+0xfa/0xf80
[   96.891874][ T5982]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.891885][ T5982] 
[   96.891885][ T5982] -> #1 (&port_lock_key){-...}-{3:3}:
[   96.891903][ T5982]        _raw_spin_lock_irqsave+0xa7/0xf0
[   96.891915][ T5982]        serial8250_console_write+0x17e/0x1ba0
[   96.891927][ T5982]        console_flush_all+0x745/0xb60
[   96.891943][ T5982]        console_unlock+0xbb/0x190
[   96.891957][ T5982]        vprintk_emit+0x4f8/0x5f0
[   96.891971][ T5982]        _printk+0xcf/0x120
[   96.891988][ T5982]        register_console+0xa8b/0xf90
[   96.892004][ T5982]        univ8250_console_init+0x3a/0x70
[   96.892016][ T5982]        console_init+0xfc/0x3f0
[   96.892033][ T5982]        start_kernel+0x24d/0x400
[   96.892046][ T5982]        x86_64_start_reservations+0x24/0x30
[   96.892064][ T5982]        x86_64_start_kernel+0x143/0x1c0
[   96.892081][ T5982]        common_startup_64+0x13e/0x147
[   96.892096][ T5982] 
[   96.892096][ T5982] -> #0 (console_owner){....}-{0:0}:
[   96.892113][ T5982]        __lock_acquire+0x15a6/0x2cf0
[   96.892125][ T5982]        lock_acquire+0x117/0x340
[   96.892142][ T5982]        console_flush_all+0x6ee/0xb60
[   96.892158][ T5982]        console_unlock+0xbb/0x190
[   96.892172][ T5982]        vprintk_emit+0x4f8/0x5f0
[   96.892186][ T5982]        _printk+0xcf/0x120
[   96.892202][ T5982]        __report_bug+0x305/0x500
[   96.892215][ T5982]        report_bug+0x16a/0x220
[   96.892227][ T5982]        handle_bug+0x98/0x200
[   96.892243][ T5982]        exc_invalid_op+0x1a/0x50
[   96.892259][ T5982]        asm_exc_invalid_op+0x1a/0x20
[   96.892269][ T5982]        sched_change_end+0x4f6/0x640
[   96.892284][ T5982]        rt_mutex_setprio+0x488/0xb70
[   96.892295][ T5982]        remove_waiter+0x7f5/0xaf0
[   96.892312][ T5982]        rt_mutex_cleanup_proxy_lock+0x6c/0x100
[   96.892323][ T5982]        futex_lock_pi+0x530/0xa90
[   96.892338][ T5982]        do_futex+0x292/0x420
[   96.892349][ T5982]        __se_sys_futex+0x36f/0x400
[   96.892362][ T5982]        do_syscall_64+0xfa/0xf80
[   96.892376][ T5982]        entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.892387][ T5982] 
[   96.892387][ T5982] other info that might help us debug this:
[   96.892387][ T5982] 
[   96.892392][ T5982] Chain exists of:
[   96.892392][ T5982]   console_owner --> &p->pi_lock --> &rq->__lock
[   96.892392][ T5982] 
[   96.892412][ T5982]  Possible unsafe locking scenario:
[   96.892412][ T5982] 
[   96.892416][ T5982]        CPU0                    CPU1
[   96.892420][ T5982]        ----                    ----
[   96.892429][ T5982]   lock(&rq->__lock);
[   96.892438][ T5982]                                lock(&p->pi_lock);
[   96.892448][ T5982]                                lock(&rq->__lock);
[   96.892457][ T5982]   lock(console_owner);
[   96.892466][ T5982] 
[   96.892466][ T5982]  *** DEADLOCK ***
[   96.892466][ T5982] 
[   96.892470][ T5982] 5 locks held by syz.0.17/5982:
[   96.892477][ T5982]  #0: ffff888075e03728 (&pi_futex_key){....}-{2:2}, at: rt_mutex_cleanup_proxy_lock+0x23/0x100
[   96.892514][ T5982]  #1: ffff88802db84768 (&p->pi_lock){-.-.}-{2:2}, at: remove_waiter+0x286/0xaf0
[   96.892557][ T5982]  #2: ffff8880b873a918 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[   96.892588][ T5982]  #3: ffffffff8df359e0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x120
[   96.892622][ T5982]  #4: ffffffff8de1d298 (console_srcu){....}-{0:0}, at: console_flush_all+0x131/0xb60
[   96.892661][ T5982] 
[   96.892661][ T5982] stack backtrace:
[   96.892668][ T5982] CPU: 0 UID: 0 PID: 5982 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[   96.892680][ T5982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   96.892687][ T5982] Call Trace:
[   96.892691][ T5982]  <TASK>
[   96.892696][ T5982]  dump_stack_lvl+0x189/0x250
[   96.892711][ T5982]  ? __pfx_dump_stack_lvl+0x10/0x10
[   96.892723][ T5982]  ? __pfx__printk+0x10/0x10
[   96.892738][ T5982]  ? print_lock_name+0xde/0x100
[   96.892752][ T5982]  print_circular_bug+0x2e2/0x300
[   96.892766][ T5982]  check_noncircular+0x12e/0x150
[   96.892780][ T5982]  __lock_acquire+0x15a6/0x2cf0
[   96.892798][ T5982]  ? console_flush_all+0x131/0xb60
[   96.892812][ T5982]  lock_acquire+0x117/0x340
[   96.892822][ T5982]  ? console_flush_all+0x131/0xb60
[   96.892837][ T5982]  ? do_raw_spin_unlock+0x122/0x240
[   96.892852][ T5982]  ? console_flush_all+0x131/0xb60
[   96.892865][ T5982]  console_flush_all+0x6ee/0xb60
[   96.892879][ T5982]  ? console_flush_all+0x131/0xb60
[   96.892899][ T5982]  ? console_flush_all+0x131/0xb60
[   96.892914][ T5982]  ? __pfx_console_flush_all+0x10/0x10
[   96.892928][ T5982]  ? is_bpf_text_address+0x26/0x2b0
[   96.892939][ T5982]  ? is_printk_cpu_sync_owner+0x32/0x40
[   96.892950][ T5982]  console_unlock+0xbb/0x190
[   96.892962][ T5982]  ? __pfx___down_trylock_console_sem+0x10/0x10
[   96.892976][ T5982]  ? __pfx_console_unlock+0x10/0x10
[   96.892991][ T5982]  vprintk_emit+0x4f8/0x5f0
[   96.893004][ T5982]  ? __pfx_vprintk_emit+0x10/0x10
[   96.893017][ T5982]  ? __lock_acquire+0x6b6/0x2cf0
[   96.893027][ T5982]  ? __lock_acquire+0x6b6/0x2cf0
[   96.893039][ T5982]  _printk+0xcf/0x120
[   96.893054][ T5982]  ? __pfx__printk+0x10/0x10
[   96.893069][ T5982]  ? find_bug+0xa5/0x370
[   96.893079][ T5982]  ? sched_change_end+0x4f6/0x640
[   96.893092][ T5982]  ? sched_change_end+0x4f6/0x640
[   96.893104][ T5982]  __report_bug+0x305/0x500
[   96.893115][ T5982]  ? sched_change_end+0x4f6/0x640
[   96.893129][ T5982]  ? __pfx___report_bug+0x10/0x10
[   96.893140][ T5982]  ? rcu_read_lock_sched_held+0x89/0x100
[   96.893152][ T5982]  ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[   96.893164][ T5982]  ? sched_change_end+0x4f6/0x640
[   96.893173][ T5982]  report_bug+0x16a/0x220
[   96.893181][ T5982]  ? sched_change_end+0x4f6/0x640
[   96.893190][ T5982]  ? sched_change_end+0x4f8/0x640
[   96.893200][ T5982]  handle_bug+0x98/0x200
[   96.893210][ T5982]  exc_invalid_op+0x1a/0x50
[   96.893220][ T5982]  asm_exc_invalid_op+0x1a/0x20
[   96.893228][ T5982] RIP: 0010:sched_change_end+0x4f6/0x640
[   96.893239][ T5982] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d e9 be de cb 09 cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[   96.893246][ T5982] RSP: 0018:ffffc900034a7850 EFLAGS: 00010046
[   96.893253][ T5982] RAX: 1ffff11005b707a0 RBX: ffffffff8d9a4810 RCX: ffffffff8192ed2f
[   96.893259][ T5982] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802db83d00
[   96.893264][ T5982] RBP: ffff88802db83fa8 R08: ffff88802db83d07 R09: 1ffff11005b707a0
[   96.893270][ T5982] R10: dffffc0000000000 R11: ffffed1005b707a1 R12: dffffc0000000000
[   96.893280][ T5982] R13: ffff88802db83d00 R14: ffff8880b873a900 R15: ffff88802db83d00
[   96.893287][ T5982]  ? sched_change_end+0x4af/0x640
[   96.893300][ T5982]  rt_mutex_setprio+0x488/0xb70
[   96.893314][ T5982]  remove_waiter+0x7f5/0xaf0
[   96.893326][ T5982]  ? lockdep_hardirqs_on+0x98/0x140
[   96.893336][ T5982]  rt_mutex_cleanup_proxy_lock+0x6c/0x100
[   96.893343][ T5982]  futex_lock_pi+0x530/0xa90
[   96.893355][ T5982]  ? __pfx_futex_lock_pi+0x10/0x10
[   96.893368][ T5982]  ? futex_hash+0x40/0x2d0
[   96.893375][ T5982]  ? futex_hash+0x2ad/0x2d0
[   96.893382][ T5982]  ? __pfx_futex_wake_mark+0x10/0x10
[   96.893393][ T5982]  ? __pfx_futex_wake+0x10/0x10
[   96.893405][ T5982]  ? handle_mm_fault+0xdb/0x32b0
[   96.893417][ T5982]  do_futex+0x292/0x420
[   96.893427][ T5982]  ? __pfx_do_futex+0x10/0x10
[   96.893436][ T5982]  __se_sys_futex+0x36f/0x400
[   96.893446][ T5982]  ? __pfx___se_sys_futex+0x10/0x10
[   96.893456][ T5982]  ? __x64_sys_futex+0x21/0xf0
[   96.893465][ T5982]  do_syscall_64+0xfa/0xf80
[   96.893475][ T5982]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.893482][ T5982]  ? clear_bhb_loop+0x60/0xb0
[   96.893491][ T5982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   96.893498][ T5982] RIP: 0033:0x7f35c178f749
[   96.893506][ T5982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   96.893513][ T5982] RSP: 002b:00007ffd9dff3548 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   96.893521][ T5982] RAX: ffffffffffffffda RBX: 00007f35c19e5fa0 RCX: 00007f35c178f749
[   96.893526][ T5982] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 000020000000cffc
[   96.893531][ T5982] RBP: 00007f35c1813f91 R08: 0000000000000000 R09: 0000000000000000
[   96.893556][ T5982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   96.893562][ T5982] R13: 00007f35c19e5fa0 R14: 00007f35c19e5fa0 R15: 0000000000000006
[   96.893570][ T5982]  </TASK>
[   98.129738][ T5982] WARNING: kernel/sched/core.c:10852 at sched_change_end+0x4f6/0x640, CPU#0: syz.0.17/5982
[   98.139696][ T5982] Modules linked in:
[   98.143568][ T5982] CPU: 0 UID: 0 PID: 5982 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[   98.152647][ T5982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   98.162790][ T5982] RIP: 0010:sched_change_end+0x4f6/0x640
[   98.168489][ T5982] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d e9 be de cb 09 cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[   98.188068][ T5982] RSP: 0018:ffffc900034a7850 EFLAGS: 00010046
[   98.194107][ T5982] RAX: 1ffff11005b707a0 RBX: ffffffff8d9a4810 RCX: ffffffff8192ed2f
[   98.202050][ T5982] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802db83d00
[   98.209999][ T5982] RBP: ffff88802db83fa8 R08: ffff88802db83d07 R09: 1ffff11005b707a0
[   98.217946][ T5982] R10: dffffc0000000000 R11: ffffed1005b707a1 R12: dffffc0000000000
[   98.225893][ T5982] R13: ffff88802db83d00 R14: ffff8880b873a900 R15: ffff88802db83d00
[   98.233842][ T5982] FS:  0000555579d21500(0000) GS:ffff888125e32000(0000) knlGS:0000000000000000
[   98.242751][ T5982] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[   98.249308][ T5982] CR2: 000020000000cffc CR3: 0000000075f7a000 CR4: 00000000003526f0
[   98.257258][ T5982] Call Trace:
[   98.260530][ T5982]  <TASK>
[   98.263440][ T5982]  rt_mutex_setprio+0x488/0xb70
[   98.268269][ T5982]  remove_waiter+0x7f5/0xaf0
[   98.272838][ T5982]  ? lockdep_hardirqs_on+0x98/0x140
[   98.278026][ T5982]  rt_mutex_cleanup_proxy_lock+0x6c/0x100
[   98.283839][ T5982]  futex_lock_pi+0x530/0xa90
[   98.288407][ T5982]  ? __pfx_futex_lock_pi+0x10/0x10
[   98.293497][ T5982]  ? futex_hash+0x40/0x2d0
[   98.297922][ T5982]  ? futex_hash+0x2ad/0x2d0
[   98.302416][ T5982]  ? __pfx_futex_wake_mark+0x10/0x10
[   98.307775][ T5982]  ? __pfx_futex_wake+0x10/0x10
[   98.312607][ T5982]  ? handle_mm_fault+0xdb/0x32b0
[   98.317573][ T5982]  do_futex+0x292/0x420
[   98.321707][ T5982]  ? __pfx_do_futex+0x10/0x10
[   98.326371][ T5982]  __se_sys_futex+0x36f/0x400
[   98.331022][ T5982]  ? __pfx___se_sys_futex+0x10/0x10
[   98.336202][ T5982]  ? __x64_sys_futex+0x21/0xf0
[   98.340941][ T5982]  do_syscall_64+0xfa/0xf80
[   98.345419][ T5982]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.351462][ T5982]  ? clear_bhb_loop+0x60/0xb0
[   98.356113][ T5982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.361980][ T5982] RIP: 0033:0x7f35c178f749
[   98.366370][ T5982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.385962][ T5982] RSP: 002b:00007ffd9dff3548 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   98.394350][ T5982] RAX: ffffffffffffffda RBX: 00007f35c19e5fa0 RCX: 00007f35c178f749
[   98.402382][ T5982] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 000020000000cffc
[   98.410341][ T5982] RBP: 00007f35c1813f91 R08: 0000000000000000 R09: 0000000000000000
[   98.418288][ T5982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   98.426319][ T5982] R13: 00007f35c19e5fa0 R14: 00007f35c19e5fa0 R15: 0000000000000006
[   98.434269][ T5982]  </TASK>
[   98.437355][ T5982] Kernel panic - not syncing: kernel: panic_on_warn set ...
[   98.444622][ T5982] CPU: 0 UID: 0 PID: 5982 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full) 
[   98.453723][ T5982] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[   98.463774][ T5982] Call Trace:
[   98.467053][ T5982]  <TASK>
[   98.469960][ T5982]  dump_stack_lvl+0x99/0x250
[   98.474539][ T5982]  ? __asan_memcpy+0x40/0x70
[   98.479102][ T5982]  ? __pfx_dump_stack_lvl+0x10/0x10
[   98.484276][ T5982]  ? __pfx__printk+0x10/0x10
[   98.488845][ T5982]  vpanic+0x237/0x6d0
[   98.492803][ T5982]  ? __pfx_vpanic+0x10/0x10
[   98.497279][ T5982]  ? is_bpf_text_address+0x292/0x2b0
[   98.502537][ T5982]  ? is_bpf_text_address+0x26/0x2b0
[   98.507711][ T5982]  panic+0xb9/0xc0
[   98.511407][ T5982]  ? __pfx_panic+0x10/0x10
[   98.515800][ T5982]  __warn+0x317/0x4b0
[   98.519760][ T5982]  ? sched_change_end+0x4f6/0x640
[   98.524759][ T5982]  ? sched_change_end+0x4f6/0x640
[   98.529861][ T5982]  __report_bug+0x288/0x500
[   98.534339][ T5982]  ? sched_change_end+0x4f6/0x640
[   98.539338][ T5982]  ? __pfx___report_bug+0x10/0x10
[   98.544334][ T5982]  ? rcu_read_lock_sched_held+0x89/0x100
[   98.550025][ T5982]  ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[   98.556077][ T5982]  ? sched_change_end+0x4f6/0x640
[   98.561074][ T5982]  report_bug+0x16a/0x220
[   98.565376][ T5982]  ? sched_change_end+0x4f6/0x640
[   98.570374][ T5982]  ? sched_change_end+0x4f8/0x640
[   98.575382][ T5982]  handle_bug+0x98/0x200
[   98.579613][ T5982]  exc_invalid_op+0x1a/0x50
[   98.584097][ T5982]  asm_exc_invalid_op+0x1a/0x20
[   98.588920][ T5982] RIP: 0010:sched_change_end+0x4f6/0x640
[   98.594530][ T5982] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d e9 be de cb 09 cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[   98.614206][ T5982] RSP: 0018:ffffc900034a7850 EFLAGS: 00010046
[   98.620336][ T5982] RAX: 1ffff11005b707a0 RBX: ffffffff8d9a4810 RCX: ffffffff8192ed2f
[   98.628283][ T5982] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802db83d00
[   98.636227][ T5982] RBP: ffff88802db83fa8 R08: ffff88802db83d07 R09: 1ffff11005b707a0
[   98.644175][ T5982] R10: dffffc0000000000 R11: ffffed1005b707a1 R12: dffffc0000000000
[   98.652121][ T5982] R13: ffff88802db83d00 R14: ffff8880b873a900 R15: ffff88802db83d00
[   98.660170][ T5982]  ? sched_change_end+0x4af/0x640
[   98.665175][ T5982]  rt_mutex_setprio+0x488/0xb70
[   98.670093][ T5982]  remove_waiter+0x7f5/0xaf0
[   98.674669][ T5982]  ? lockdep_hardirqs_on+0x98/0x140
[   98.679839][ T5982]  rt_mutex_cleanup_proxy_lock+0x6c/0x100
[   98.685528][ T5982]  futex_lock_pi+0x530/0xa90
[   98.690091][ T5982]  ? __pfx_futex_lock_pi+0x10/0x10
[   98.695181][ T5982]  ? futex_hash+0x40/0x2d0
[   98.699568][ T5982]  ? futex_hash+0x2ad/0x2d0
[   98.704044][ T5982]  ? __pfx_futex_wake_mark+0x10/0x10
[   98.709303][ T5982]  ? __pfx_futex_wake+0x10/0x10
[   98.714128][ T5982]  ? handle_mm_fault+0xdb/0x32b0
[   98.719043][ T5982]  do_futex+0x292/0x420
[   98.723190][ T5982]  ? __pfx_do_futex+0x10/0x10
[   98.727843][ T5982]  __se_sys_futex+0x36f/0x400
[   98.732500][ T5982]  ? __pfx___se_sys_futex+0x10/0x10
[   98.737681][ T5982]  ? __x64_sys_futex+0x21/0xf0
[   98.742504][ T5982]  do_syscall_64+0xfa/0xf80
[   98.746981][ T5982]  ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.753025][ T5982]  ? clear_bhb_loop+0x60/0xb0
[   98.757677][ T5982]  entry_SYSCALL_64_after_hwframe+0x77/0x7f
[   98.763542][ T5982] RIP: 0033:0x7f35c178f749
[   98.767933][ T5982] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[   98.787603][ T5982] RSP: 002b:00007ffd9dff3548 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[   98.795993][ T5982] RAX: ffffffffffffffda RBX: 00007f35c19e5fa0 RCX: 00007f35c178f749
[   98.803960][ T5982] RDX: 0000000000000000 RSI: 0000000000000006 RDI: 000020000000cffc
[   98.811925][ T5982] RBP: 00007f35c1813f91 R08: 0000000000000000 R09: 0000000000000000
[   98.819869][ T5982] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[   98.827827][ T5982] R13: 00007f35c19e5fa0 R14: 00007f35c19e5fa0 R15: 0000000000000006
[   98.835777][ T5982]  </TASK>
[   99.931187][ T5982] Shutting down cpus with NMI
[   99.936207][ T5982] Kernel Offset: disabled
[   99.940530][ T5982] Rebooting in 86400 seconds..