Warning: Permanently added '10.128.1.202' (ED25519) to the list of known hosts.
2025/12/05 01:19:46 parsed 1 programs
[   87.625203][ T4195] cgroup: Unknown subsys name 'net'
[   87.740186][ T4195] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[   89.039116][ T4195] Adding 124996k swap on ./swap-file.  Priority:0 extents:1 across:124996k FS
[   90.447862][ T1333] cfg80211: failed to load regulatory.db
[   91.712873][ T1225] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.732221][ T1225] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.749486][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
[   91.768894][ T1225] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[   91.777987][ T1225] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[   91.787896][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[   93.740128][ T4277] chnl_net:caif_netlink_parms(): no params data found
[   93.783279][ T4277] bridge0: port 1(bridge_slave_0) entered blocking state
[   93.791441][ T4277] bridge0: port 1(bridge_slave_0) entered disabled state
[   93.799464][ T4277] device bridge_slave_0 entered promiscuous mode
[   93.824263][ T4277] bridge0: port 2(bridge_slave_1) entered blocking state
[   93.831468][ T4277] bridge0: port 2(bridge_slave_1) entered disabled state
[   93.839753][ T4277] device bridge_slave_1 entered promiscuous mode
[   93.859502][ T4277] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   93.886227][ T4277] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   93.908247][ T4277] team0: Port device team_slave_0 added
[   93.916418][ T4277] team0: Port device team_slave_1 added
[   93.936100][ T4277] batman_adv: batadv0: Adding interface: batadv_slave_0
[   93.943063][ T4277] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   93.969178][ T4277] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   93.993468][ T4277] batman_adv: batadv0: Adding interface: batadv_slave_1
[   94.000458][ T4277] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   94.026588][ T4277] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   94.056991][ T4277] device hsr_slave_0 entered promiscuous mode
[   94.063984][ T4277] device hsr_slave_1 entered promiscuous mode
[   94.181252][ T4277] netdevsim netdevsim0 netdevsim0: renamed from eth0
[   94.192441][ T4277] netdevsim netdevsim0 netdevsim1: renamed from eth1
[   94.202360][ T4277] netdevsim netdevsim0 netdevsim2: renamed from eth2
[   94.213053][ T4277] netdevsim netdevsim0 netdevsim3: renamed from eth3
[   94.249838][ T4277] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.257189][ T4277] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.265037][ T4277] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.272090][ T4277] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.323542][ T4277] 8021q: adding VLAN 0 to HW filter on device bond0
[   94.353104][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[   94.362773][  T155] bridge0: port 1(bridge_slave_0) entered disabled state
[   94.371880][  T155] bridge0: port 2(bridge_slave_1) entered disabled state
[   94.380805][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): bond0: link becomes ready
[   94.392497][ T4277] 8021q: adding VLAN 0 to HW filter on device team0
[   94.410828][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[   94.420030][ T3037] bridge0: port 1(bridge_slave_0) entered blocking state
[   94.427168][ T3037] bridge0: port 1(bridge_slave_0) entered forwarding state
[   94.456849][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[   94.465522][ T3037] bridge0: port 2(bridge_slave_1) entered blocking state
[   94.472551][ T3037] bridge0: port 2(bridge_slave_1) entered forwarding state
[   94.481376][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[   94.492291][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[   94.528720][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[   94.541798][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[   94.553065][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[   94.563997][ T4277] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[   94.688631][ T4277] 8021q: adding VLAN 0 to HW filter on device batadv0
[   94.696776][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[   94.704289][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[   94.726404][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[   94.736375][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[   94.755779][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[   94.766457][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[   94.777496][ T4277] device veth0_vlan entered promiscuous mode
[   94.786106][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[   94.794381][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[   94.808466][ T4277] device veth1_vlan entered promiscuous mode
[   94.831237][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[   94.840510][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[   94.851031][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[   94.859778][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[   94.872033][ T4277] device veth0_macvtap entered promiscuous mode
[   94.882583][ T4277] device veth1_macvtap entered promiscuous mode
[   94.904228][ T4277] batman_adv: batadv0: Interface activated: batadv_slave_0
[   94.913729][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[   94.922729][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[   94.932660][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[   94.941487][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[   94.954687][ T4277] batman_adv: batadv0: Interface activated: batadv_slave_1
[   94.962594][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[   94.971883][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[   94.983647][ T4277] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[   94.993062][ T4277] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[   95.002318][ T4277] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[   95.011905][ T4277] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[   95.126229][ T4277] syz-executor (4277) used greatest stack depth: 20960 bytes left
2025/12/05 01:19:55 executed programs: 0
[   95.716871][ T4299] chnl_net:caif_netlink_parms(): no params data found
[   95.774467][ T4299] bridge0: port 1(bridge_slave_0) entered blocking state
[   95.781768][ T4299] bridge0: port 1(bridge_slave_0) entered disabled state
[   95.789909][ T4299] device bridge_slave_0 entered promiscuous mode
[   95.799595][ T4299] bridge0: port 2(bridge_slave_1) entered blocking state
[   95.814065][ T4299] bridge0: port 2(bridge_slave_1) entered disabled state
[   95.821928][ T4299] device bridge_slave_1 entered promiscuous mode
[   95.846654][ T4299] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[   95.858504][ T4299] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[   95.882253][ T4299] team0: Port device team_slave_0 added
[   95.894369][ T4299] team0: Port device team_slave_1 added
[   95.920996][    T9] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   95.936426][ T4299] batman_adv: batadv0: Adding interface: batadv_slave_0
[   95.943399][ T4299] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   95.969685][ T4299] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[   95.983931][ T4299] batman_adv: batadv0: Adding interface: batadv_slave_1
[   95.991056][ T4299] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[   96.017468][ T4299] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[   96.045399][ T4299] device hsr_slave_0 entered promiscuous mode
[   96.052233][ T4299] device hsr_slave_1 entered promiscuous mode
[   96.059729][ T4299] debugfs: Directory 'hsr0' with parent 'hsr' already present!
[   96.067793][ T4299] Cannot create hsr debugfs directory
[   97.655915][ T4207] Bluetooth: hci0: command 0x0409 tx timeout
[   98.361198][    T9] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[   99.725147][   T21] Bluetooth: hci0: command 0x041b tx timeout
[  100.358934][    T9] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  100.402621][    T9] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[  101.265576][ T4299] netdevsim netdevsim0 netdevsim0: renamed from eth0
[  101.274302][ T4299] netdevsim netdevsim0 netdevsim1: renamed from eth1
[  101.284225][ T4299] netdevsim netdevsim0 netdevsim2: renamed from eth2
[  101.303939][ T4299] netdevsim netdevsim0 netdevsim3: renamed from eth3
[  101.367047][ T4299] 8021q: adding VLAN 0 to HW filter on device bond0
[  101.379131][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[  101.388561][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[  101.399293][ T4299] 8021q: adding VLAN 0 to HW filter on device team0
[  101.419294][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bridge: link becomes ready
[  101.428551][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[  101.437265][ T1225] bridge0: port 1(bridge_slave_0) entered blocking state
[  101.444344][ T1225] bridge0: port 1(bridge_slave_0) entered forwarding state
[  101.455912][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): bridge0: link becomes ready
[  101.478185][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bridge: link becomes ready
[  101.487046][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[  101.496240][ T1225] bridge0: port 2(bridge_slave_1) entered blocking state
[  101.503272][ T1225] bridge0: port 2(bridge_slave_1) entered forwarding state
[  101.513873][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_bond: link becomes ready
[  101.530609][    T9] device hsr_slave_0 left promiscuous mode
[  101.538202][    T9] device hsr_slave_1 left promiscuous mode
[  101.545230][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[  101.552699][    T9] batman_adv: batadv0: Removing interface: batadv_slave_0
[  101.562076][    T9] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[  101.569784][    T9] batman_adv: batadv0: Removing interface: batadv_slave_1
[  101.577683][    T9] device bridge_slave_1 left promiscuous mode
[  101.584291][    T9] bridge0: port 2(bridge_slave_1) entered disabled state
[  101.600137][    T9] device bridge_slave_0 left promiscuous mode
[  101.607184][    T9] bridge0: port 1(bridge_slave_0) entered disabled state
[  101.623252][    T9] device veth1_macvtap left promiscuous mode
[  101.630298][    T9] device veth0_macvtap left promiscuous mode
[  101.636764][    T9] device veth1_vlan left promiscuous mode
[  101.642670][    T9] device veth0_vlan left promiscuous mode
[  101.771779][    T9] team0 (unregistering): Port device team_slave_1 removed
[  101.784552][    T9] team0 (unregistering): Port device team_slave_0 removed
[  101.800059][    T9] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[  101.812785][    T9] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[  101.815111][ T4248] Bluetooth: hci0: command 0x040f tx timeout
[  101.867199][    T9] bond0 (unregistering): Released all slaves
[  101.933133][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_bond: link becomes ready
[  101.946786][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_team: link becomes ready
[  101.958740][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_0: link becomes ready
[  101.967493][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): team0: link becomes ready
[  101.983873][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_team: link becomes ready
[  101.995878][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): team_slave_1: link becomes ready
[  102.004825][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_hsr: link becomes ready
[  102.013315][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[  102.029544][ T4299] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[  102.042126][ T4299] IPv6: ADDRCONF(NETDEV_CHANGE): hsr0: link becomes ready
[  102.051461][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_hsr: link becomes ready
[  102.060551][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[  102.156152][ T4299] 8021q: adding VLAN 0 to HW filter on device batadv0
[  102.163654][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan1: link becomes ready
[  102.171283][  T155] IPv6: ADDRCONF(NETDEV_CHANGE): vxcan0: link becomes ready
[  102.196879][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_virt_wifi: link becomes ready
[  102.206318][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[  102.217639][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_vlan: link becomes ready
[  102.226065][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[  102.236059][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[  102.243877][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[  102.252692][ T4299] device veth0_vlan entered promiscuous mode
[  102.269176][ T4299] device veth1_vlan entered promiscuous mode
[  102.290729][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan0: link becomes ready
[  102.299589][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): macvlan1: link becomes ready
[  102.308151][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_macvtap: link becomes ready
[  102.318913][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[  102.330377][ T4299] device veth0_macvtap entered promiscuous mode
[  102.340268][ T4299] device veth1_macvtap entered promiscuous mode
[  102.356761][ T4299] batman_adv: batadv0: Interface activated: batadv_slave_0
[  102.367597][ T4299] batman_adv: batadv0: Interface activated: batadv_slave_1
[  102.377401][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): macvtap0: link becomes ready
[  102.385815][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): macsec0: link becomes ready
[  102.393937][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_0: link becomes ready
[  102.406503][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[  102.417450][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): batadv_slave_1: link becomes ready
[  102.426922][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[  102.441300][ T4299] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[  102.450749][ T4299] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[  102.460785][ T4299] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[  102.470876][ T4299] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[  102.544199][ T3037] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.562818][ T3037] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.582054][ T1225] IPv6: ADDRCONF(NETDEV_CHANGE): wlan0: link becomes ready
2025/12/05 01:20:03 executed programs: 2
[  102.597226][ T1225] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[  102.607472][ T1225] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[  102.618273][ T3037] IPv6: ADDRCONF(NETDEV_CHANGE): wlan1: link becomes ready
[  118.532502][ T4365] chnl_net:caif_netlink_parms(): no params data found
[  120.444897][ T1107] Bluetooth: hci1: command 0x0409 tx timeout
[  122.524910][ T1107] Bluetooth: hci1: command 0x041b tx timeout
[  124.604881][ T1107] Bluetooth: hci1: command 0x040f tx timeout
[  126.684900][ T1107] Bluetooth: hci1: command 0x0419 tx timeout
[  180.444937][ T4207] Bluetooth: hci2: command 0x0409 tx timeout
[  182.524927][ T4207] Bluetooth: hci2: command 0x041b tx timeout
[  184.604875][ T4207] Bluetooth: hci2: command 0x040f tx timeout
[  186.684897][ T4207] Bluetooth: hci2: command 0x0419 tx timeout
[  208.354800][    C1] rcu: INFO: rcu_preempt detected stalls on CPUs/tasks:
[  208.361829][    C1] rcu: 	0-....: (1 GPs behind) idle=a5d/1/0x4000000000000002 softirq=6762/6763 fqs=5249 
[  208.372478][    C1] 	(detected by 1, t=10502 jiffies, g=7657, q=583)
[  208.378995][    C1] Sending NMI from CPU 1 to CPUs 0:
[  208.384212][    C0] NMI backtrace for cpu 0
[  208.384229][    C0] CPU: 0 PID: 4357 Comm: syz.0.24 Not tainted syzkaller #0
[  208.384246][    C0] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[  208.384257][    C0] RIP: 0010:kasan_check_range+0x5c/0x290
[  208.384291][    C0] Code: 01 00 00 00 00 fc ff df 49 89 fb 49 c1 eb 03 49 b8 00 00 00 00 00 fc ff df 4f 8d 0c 03 48 8d 5c 37 ff 48 c1 eb 03 4e 8d 14 3b <4d> 89 d6 4d 29 ce 49 83 fe 10 7f 26 4d 85 f6 0f 84 39 01 00 00 48
[  208.384305][    C0] RSP: 0018:ffffc9000309f580 EFLAGS: 00000807
[  208.384317][    C0] RAX: 0000000000000001 RBX: 1ffffffff1ff7c18 RCX: ffffffff815cb124
[  208.384327][    C0] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffffffff8ffbe0c0
[  208.384335][    C0] RBP: 0000000000000002 R08: dffffc0000000000 R09: fffffbfff1ff7c18
[  208.384345][    C0] R10: fffffbfff1ff7c19 R11: 1ffffffff1ff7c18 R12: 0000000000000004
[  208.384354][    C0] R13: dffffc0000000000 R14: ffff88807cf7c670 R15: dffffc0000000001
[  208.384363][    C0] FS:  0000000000000000(0000) GS:ffff8880b9000000(0000) knlGS:0000000000000000
[  208.384375][    C0] CS:  0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[  208.384384][    C0] CR2: 00007fb39b5c09e0 CR3: 000000000be8e000 CR4: 00000000003506f0
[  208.384396][    C0] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[  208.384408][    C0] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[  208.384416][    C0] Call Trace:
[  208.384426][    C0]  <TASK>
[  208.384437][    C0]  mark_lock+0x94/0x320
[  208.384462][    C0]  lockdep_hardirqs_on_prepare+0x23c/0x760
[  208.384479][    C0]  ? lock_chain_count+0x20/0x20
[  208.384494][    C0]  ? asm_sysvec_irq_work+0x16/0x20
[  208.384516][    C0]  ? asm_sysvec_irq_work+0x16/0x20
[  208.384530][    C0]  trace_hardirqs_on+0x67/0x80
[  208.384551][    C0]  asm_sysvec_irq_work+0x16/0x20
[  208.384565][    C0] RIP: 0010:rcu_read_unlock_special+0x84/0x480
[  208.384580][    C0] Code: f1 f1 f1 00 f2 f2 f2 4a 89 04 2b 66 42 c7 44 2b 09 f3 f3 42 c6 44 2b 0b f3 65 44 8b 35 ed 11 9e 7e 41 f7 c6 00 00 f0 00 74 45 <48> c7 44 24 20 0e 36 e0 45 4a c7 04 2b 00 00 00 00 66 42 c7 44 2b
[  208.384591][    C0] RSP: 0018:ffffc9000309f760 EFLAGS: 00000206
[  208.384602][    C0] RAX: bebd389ea57e9b00 RBX: 1ffff92000613ef0 RCX: bebd389ea57e9b00
[  208.384613][    C0] RDX: dffffc0000000000 RSI: ffffffff8a0b1c60 RDI: ffffffff8a59e580
[  208.384623][    C0] RBP: ffffc9000309f830 R08: dffffc0000000000 R09: fffffbfff1ff7c19
[  208.384634][    C0] R10: fffffbfff1ff7c19 R11: 1ffffffff1ff7c18 R12: ffffffff8c120c00
[  208.384644][    C0] R13: dffffc0000000000 R14: 0000000000000246 R15: 0000000000000001
[  208.384660][    C0]  ? __rcu_read_unlock+0xd0/0xd0
[  208.384674][    C0]  ? rcu_lock_acquire+0x30/0x30
[  208.384688][    C0]  ? __lock_acquire+0x7c60/0x7c60
[  208.384704][    C0]  __rcu_read_unlock+0x78/0xd0
[  208.384718][    C0]  __unlock_page_memcg+0xea/0x100
[  208.384734][    C0]  unmap_page_range+0xfbc/0x2520
[  208.384754][    C0]  ? uprobe_munmap+0x165/0x3f0
[  208.384773][    C0]  unmap_vmas+0x11b/0x230
[  208.384785][    C0]  ? uprobe_clear_state+0x4f/0x460
[  208.384802][    C0]  ? unmap_page_range+0x2520/0x2520
[  208.384815][    C0]  ? __mutex_lock_common+0x431/0x2390
[  208.384836][    C0]  ? memset+0x1e/0x40
[  208.384851][    C0]  exit_mmap+0x38f/0x5f0
[  208.384867][    C0]  ? vm_brk+0x20/0x20
[  208.384885][    C0]  ? uprobe_clear_state+0x2f6/0x460
[  208.384898][    C0]  ? mm_update_next_owner+0x522/0x640
[  208.384924][    C0]  __mmput+0x115/0x3b0
[  208.384938][    C0]  exit_mm+0x567/0x6c0
[  208.384952][    C0]  ? xacct_add_tsk+0x4b0/0x4b0
[  208.384968][    C0]  ? do_exit+0x20a0/0x20a0
[  208.384983][    C0]  ? __ia32_sys_timer_delete+0x40/0x40
[  208.384998][    C0]  ? hrtimer_try_to_cancel+0x3c9/0x410
[  208.385013][    C0]  ? taskstats_exit+0x439/0xab0
[  208.385028][    C0]  ? tty_audit_exit+0x14e/0x1f0
[  208.385052][    C0]  do_exit+0x5a1/0x20a0
[  208.385068][    C0]  ? put_task_struct+0x80/0x80
[  208.385082][    C0]  ? rcu_nmi_exit+0x6f/0xf0
[  208.385099][    C0]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  208.385115][    C0]  ? lock_chain_count+0x20/0x20
[  208.385133][    C0]  do_group_exit+0x12e/0x300
[  208.385156][    C0]  __x64_sys_exit_group+0x3b/0x40
[  208.385170][    C0]  do_syscall_64+0x4c/0xa0
[  208.385182][    C0]  ? clear_bhb_loop+0x30/0x80
[  208.385194][    C0]  ? clear_bhb_loop+0x30/0x80
[  208.385207][    C0]  entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  208.385220][    C0] RIP: 0033:0x7fb39b6e7749
[  208.385231][    C0] Code: Unable to access opcode bytes at RIP 0x7fb39b6e771f.
[  208.385237][    C0] RSP: 002b:00007ffcec614ab8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[  208.385250][    C0] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007fb39b6e7749
[  208.385259][    C0] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[  208.385267][    C0] RBP: 00007ffcec614b1c R08: 00000001ec614baf R09: 00000000000927c0
[  208.385276][    C0] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000007
[  208.385284][    C0] R13: 00000000000927c0 R14: 0000000000019312 R15: 00007ffcec614b70
[  208.385297][    C0]  </TASK>
[  213.334827][   T21] rcu: INFO: rcu_preempt detected expedited stalls on CPUs/tasks: { 0-... } 11000 jiffies s: 2849 root: 0x1/.
[  213.356155][   T21] rcu: blocking rcu_node structures (internal RCU debug):
[  213.363317][   T21] Task dump for CPU 0:
[  213.367482][   T21] task:syz.0.24        state:R  running task     stack:26496 pid: 4357 ppid:  4299 flags:0x00000008
[  213.378370][   T21] Call Trace:
[  213.381736][   T21]  <TASK>
[  213.384667][   T21]  ? __rcu_read_unlock+0xd0/0xd0
[  213.389682][   T21]  ? rcu_lock_acquire+0x30/0x30
[  213.394538][   T21]  ? __lock_acquire+0x7c60/0x7c60
[  213.399630][   T21]  ? __rcu_read_unlock+0x78/0xd0
[  213.404572][   T21]  ? __unlock_page_memcg+0xea/0x100
[  213.409852][   T21]  ? unmap_page_range+0xfbc/0x2520
[  213.415012][   T21]  ? uprobe_munmap+0x165/0x3f0
[  213.419790][   T21]  ? unmap_vmas+0x11b/0x230
[  213.424294][   T21]  ? uprobe_clear_state+0x4f/0x460
[  213.429463][   T21]  ? unmap_page_range+0x2520/0x2520
[  213.434657][   T21]  ? __mutex_lock_common+0x431/0x2390
[  213.440090][   T21]  ? memset+0x1e/0x40
[  213.444087][   T21]  ? exit_mmap+0x38f/0x5f0
[  213.448547][   T21]  ? vm_brk+0x20/0x20
[  213.452538][   T21]  ? uprobe_clear_state+0x2f6/0x460
[  213.457775][   T21]  ? mm_update_next_owner+0x522/0x640
[  213.463162][   T21]  ? __mmput+0x115/0x3b0
[  213.467453][   T21]  ? exit_mm+0x567/0x6c0
[  213.471699][   T21]  ? xacct_add_tsk+0x4b0/0x4b0
[  213.476508][   T21]  ? do_exit+0x20a0/0x20a0
[  213.481105][   T21]  ? __ia32_sys_timer_delete+0x40/0x40
[  213.486831][   T21]  ? hrtimer_try_to_cancel+0x3c9/0x410
[  213.492288][   T21]  ? taskstats_exit+0x439/0xab0
[  213.497178][   T21]  ? tty_audit_exit+0x14e/0x1f0
[  213.502038][   T21]  ? do_exit+0x5a1/0x20a0
[  213.506431][   T21]  ? put_task_struct+0x80/0x80
[  213.511190][   T21]  ? rcu_nmi_exit+0x6f/0xf0
[  213.515727][   T21]  ? lockdep_hardirqs_on_prepare+0x3fc/0x760
[  213.521712][   T21]  ? lock_chain_count+0x20/0x20
[  213.526610][   T21]  ? do_group_exit+0x12e/0x300
[  213.531387][   T21]  ? __x64_sys_exit_group+0x3b/0x40
[  213.536642][   T21]  ? do_syscall_64+0x4c/0xa0
[  213.541230][   T21]  ? clear_bhb_loop+0x30/0x80
[  213.545961][   T21]  ? clear_bhb_loop+0x30/0x80
[  213.550638][   T21]  ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[  213.556889][   T21]  </TASK>