Warning: Permanently added '10.128.1.182' (ED25519) to the list of known hosts.
2025/12/19 23:08:25 parsed 1 programs
[ 88.116374][ T5831] cgroup: Unknown subsys name 'net'
[ 88.274490][ T5831] cgroup: Unknown subsys name 'cpuset'
[ 88.283809][ T5831] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 89.930594][ T5831] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 92.252139][ T123] cfg80211: failed to load regulatory.db
[ 92.934133][ T5845] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 93.607844][ T36] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 93.621355][ T36] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 93.666445][ T56] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 93.674978][ T56] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 94.948130][ T5886] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 94.958843][ T5886] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 94.971838][ T5886] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 94.982143][ T5886] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 94.991638][ T5886] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 96.567136][ T5911] chnl_net:caif_netlink_parms(): no params data found
[ 96.682755][ T5911] bridge0: port 1(bridge_slave_0) entered blocking state
[ 96.692275][ T5911] bridge0: port 1(bridge_slave_0) entered disabled state
[ 96.700001][ T5911] bridge_slave_0: entered allmulticast mode
[ 96.708091][ T5911] bridge_slave_0: entered promiscuous mode
[ 96.718441][ T5911] bridge0: port 2(bridge_slave_1) entered blocking state
[ 96.725928][ T5911] bridge0: port 2(bridge_slave_1) entered disabled state
[ 96.733659][ T5911] bridge_slave_1: entered allmulticast mode
[ 96.741461][ T5911] bridge_slave_1: entered promiscuous mode
[ 96.780572][ T5911] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 96.794591][ T5911] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 96.837347][ T5911] team0: Port device team_slave_0 added
[ 96.846674][ T5911] team0: Port device team_slave_1 added
[ 96.875082][ T5911] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 96.883680][ T5911] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 96.913037][ T5911] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 96.927372][ T5911] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 96.936109][ T5911] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 96.966730][ T5911] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 97.012319][ T5911] hsr_slave_0: entered promiscuous mode
[ 97.019709][ T5911] hsr_slave_1: entered promiscuous mode
[ 97.198037][ T5911] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 97.216971][ T5911] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 97.230025][ T5911] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 97.244000][ T5911] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 97.333190][ T5911] 8021q: adding VLAN 0 to HW filter on device bond0
[ 97.365626][ T5911] 8021q: adding VLAN 0 to HW filter on device team0
[ 97.383663][ T4408] bridge0: port 1(bridge_slave_0) entered blocking state
[ 97.390994][ T4408] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 97.413041][ T12] bridge0: port 2(bridge_slave_1) entered blocking state
[ 97.421254][ T12] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 97.599774][ T5911] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 97.648563][ T5911] veth0_vlan: entered promiscuous mode
[ 97.662691][ T5911] veth1_vlan: entered promiscuous mode
[ 97.695726][ T5911] veth0_macvtap: entered promiscuous mode
[ 97.708821][ T5911] veth1_macvtap: entered promiscuous mode
[ 97.733460][ T5911] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 97.750484][ T5911] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 97.768275][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.780626][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.798503][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.818387][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.984743][ T4408] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.075793][ T4408] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.177620][ T4408] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.257601][ T4408] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/19 23:08:38 executed programs: 0
[ 98.602331][ T5886] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 98.613577][ T5886] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 98.622234][ T5886] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 98.633079][ T5886] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 98.642762][ T5886] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 98.816577][ T5941] chnl_net:caif_netlink_parms(): no params data found
[ 98.899984][ T5941] bridge0: port 1(bridge_slave_0) entered blocking state
[ 98.908688][ T5941] bridge0: port 1(bridge_slave_0) entered disabled state
[ 98.916949][ T5941] bridge_slave_0: entered allmulticast mode
[ 98.924871][ T5941] bridge_slave_0: entered promiscuous mode
[ 98.936133][ T5941] bridge0: port 2(bridge_slave_1) entered blocking state
[ 98.943638][ T5941] bridge0: port 2(bridge_slave_1) entered disabled state
[ 98.951450][ T5941] bridge_slave_1: entered allmulticast mode
[ 98.958604][ T5941] bridge_slave_1: entered promiscuous mode
[ 98.997585][ T5941] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 99.011561][ T5941] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 99.056248][ T5941] team0: Port device team_slave_0 added
[ 99.065794][ T5941] team0: Port device team_slave_1 added
[ 99.103748][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 99.112255][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 99.146241][ T5941] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 99.161136][ T5941] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 99.170610][ T5941] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 99.198652][ T5941] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 99.260912][ T5941] hsr_slave_0: entered promiscuous mode
[ 99.267856][ T5941] hsr_slave_1: entered promiscuous mode
[ 99.276882][ T5941] debugfs: 'hsr0' already exists in 'hsr'
[ 99.283343][ T5941] Cannot create hsr debugfs directory
[ 100.468949][ T4408] bridge_slave_1: left allmulticast mode
[ 100.475126][ T4408] bridge_slave_1: left promiscuous mode
[ 100.483805][ T4408] bridge0: port 2(bridge_slave_1) entered disabled state
[ 100.496386][ T4408] bridge_slave_0: left allmulticast mode
[ 100.504453][ T4408] bridge_slave_0: left promiscuous mode
[ 100.512198][ T4408] bridge0: port 1(bridge_slave_0) entered disabled state
[ 100.731504][ T5150] Bluetooth: hci0: command tx timeout
[ 100.808259][ T4408] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 100.823054][ T4408] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 100.833807][ T4408] bond0 (unregistering): Released all slaves
[ 100.976163][ T4408] hsr_slave_0: left promiscuous mode
[ 100.984348][ T4408] hsr_slave_1: left promiscuous mode
[ 101.002089][ T4408] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 101.009670][ T4408] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 101.019050][ T4408] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 101.028866][ T4408] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 101.053587][ T4408] veth1_macvtap: left promiscuous mode
[ 101.059879][ T4408] veth0_macvtap: left promiscuous mode
[ 101.069718][ T4408] veth1_vlan: left promiscuous mode
[ 101.075906][ T4408] veth0_vlan: left promiscuous mode
[ 101.586216][ T4408] team0 (unregistering): Port device team_slave_1 removed
[ 101.636757][ T4408] team0 (unregistering): Port device team_slave_0 removed
[ 102.266545][ T5941] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 102.283656][ T5941] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 102.300171][ T5941] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 102.316249][ T5941] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 102.585774][ T5941] 8021q: adding VLAN 0 to HW filter on device bond0
[ 102.644426][ T5941] 8021q: adding VLAN 0 to HW filter on device team0
[ 102.665318][ T56] bridge0: port 1(bridge_slave_0) entered blocking state
[ 102.673728][ T56] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 102.706322][ T56] bridge0: port 2(bridge_slave_1) entered blocking state
[ 102.714203][ T56] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 102.811524][ T5150] Bluetooth: hci0: command tx timeout
[ 102.955828][ T5941] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 103.012495][ T5941] veth0_vlan: entered promiscuous mode
[ 103.025130][ T5941] veth1_vlan: entered promiscuous mode
[ 103.063303][ T5941] veth0_macvtap: entered promiscuous mode
[ 103.074861][ T5941] veth1_macvtap: entered promiscuous mode
[ 103.095020][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 103.113861][ T5941] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 103.132545][ T4408] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.143456][ T4408] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.154619][ T4408] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.167074][ T4408] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 103.250298][ T56] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.263806][ T56] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.298863][ T4408] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 103.310574][ T4408] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.890978][ T5150] Bluetooth: hci0: command tx timeout
[ 106.383893][ T5987] ------------[ cut here ]------------
[ 106.384348][ T5987]
[ 106.384356][ T5987] ======================================================
[ 106.384361][ T5987] WARNING: possible circular locking dependency detected
[ 106.384375][ T5987] syzkaller #0 Not tainted
[ 106.384381][ T5987] ------------------------------------------------------
[ 106.384386][ T5987] syz.0.17/5987 is trying to acquire lock:
[ 106.384393][ T5987] ffffffff8e333180 (console_owner){....}-{0:0}, at: console_flush_all+0x131/0xb60
[ 106.384433][ T5987]
[ 106.384433][ T5987] but task is already holding lock:
[ 106.384437][ T5987] ffff8880b863ab18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 106.384470][ T5987]
[ 106.384470][ T5987] which lock already depends on the new lock.
[ 106.384470][ T5987]
[ 106.384475][ T5987]
[ 106.384475][ T5987] the existing dependency chain (in reverse order) is:
[ 106.384479][ T5987]
[ 106.384479][ T5987] -> #4 (&rq->__lock){-.-.}-{2:2}:
[ 106.384495][ T5987] _raw_spin_lock_nested+0x32/0x50
[ 106.384509][ T5987] raw_spin_rq_lock_nested+0x2a/0x140
[ 106.384525][ T5987] task_rq_lock+0xbc/0x470
[ 106.384539][ T5987] cgroup_move_task+0x92/0x2a0
[ 106.384551][ T5987] css_set_move_task+0x658/0x9e0
[ 106.384568][ T5987] cgroup_post_fork+0x1ef/0x7a0
[ 106.384582][ T5987] copy_process+0x3614/0x3950
[ 106.384601][ T5987] kernel_clone+0x21e/0x820
[ 106.384612][ T5987] user_mode_thread+0xdd/0x140
[ 106.384620][ T5987] rest_init+0x23/0x300
[ 106.384632][ T5987] start_kernel+0x3ac/0x400
[ 106.384641][ T5987] x86_64_start_reservations+0x24/0x30
[ 106.384652][ T5987] x86_64_start_kernel+0x143/0x1c0
[ 106.384662][ T5987] common_startup_64+0x13e/0x147
[ 106.384672][ T5987]
[ 106.384672][ T5987] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[ 106.384683][ T5987] _raw_spin_lock_irqsave+0xa7/0xf0
[ 106.384690][ T5987] try_to_wake_up+0x67/0x12b0
[ 106.384699][ T5987] __wake_up_common_lock+0x137/0x1f0
[ 106.384710][ T5987] tty_port_default_wakeup+0xfb/0x170
[ 106.384723][ T5987] serial8250_tx_chars+0x72e/0x970
[ 106.384734][ T5987] serial8250_handle_irq+0x633/0xbb0
[ 106.384743][ T5987] serial8250_default_handle_irq+0xbf/0x200
[ 106.384754][ T5987] serial8250_interrupt+0x8d/0x180
[ 106.384761][ T5987] __handle_irq_event_percpu+0x285/0xa60
[ 106.384772][ T5987] handle_irq_event+0x8b/0x1e0
[ 106.384781][ T5987] handle_edge_irq+0x23b/0xa10
[ 106.384790][ T5987] __common_interrupt+0x141/0x1f0
[ 106.384802][ T5987] common_interrupt+0xb6/0xe0
[ 106.384815][ T5987] asm_common_interrupt+0x26/0x40
[ 106.384823][ T5987] _raw_spin_unlock_irqrestore+0xa8/0x110
[ 106.384831][ T5987] srcu_gp_start_if_needed+0x769/0xaf0
[ 106.384844][ T5987] __synchronize_srcu+0x2f0/0x390
[ 106.384856][ T5987] fsnotify_connector_destroy_workfn+0x44/0xb0
[ 106.384870][ T5987] process_one_work+0x93a/0x15a0
[ 106.384883][ T5987] worker_thread+0x9b0/0xee0
[ 106.384896][ T5987] kthread+0x711/0x8a0
[ 106.384905][ T5987] ret_from_fork+0x599/0xb30
[ 106.384916][ T5987] ret_from_fork_asm+0x1a/0x30
[ 106.384926][ T5987]
[ 106.384926][ T5987] -> #2 (&tty->write_wait){-.-.}-{3:3}:
[ 106.384938][ T5987] _raw_spin_lock_irqsave+0xa7/0xf0
[ 106.384945][ T5987] __wake_up_common_lock+0x2f/0x1f0
[ 106.384954][ T5987] tty_port_default_wakeup+0xfb/0x170
[ 106.384964][ T5987] serial8250_tx_chars+0x72e/0x970
[ 106.384973][ T5987] serial8250_handle_irq+0x633/0xbb0
[ 106.384982][ T5987] serial8250_default_handle_irq+0xbf/0x200
[ 106.384993][ T5987] serial8250_interrupt+0x8d/0x180
[ 106.385000][ T5987] __handle_irq_event_percpu+0x285/0xa60
[ 106.385009][ T5987] handle_irq_event+0x8b/0x1e0
[ 106.385018][ T5987] handle_edge_irq+0x23b/0xa10
[ 106.385026][ T5987] __common_interrupt+0x141/0x1f0
[ 106.385035][ T5987] common_interrupt+0xb6/0xe0
[ 106.385045][ T5987] asm_common_interrupt+0x26/0x40
[ 106.385052][ T5987] _raw_spin_unlock_irqrestore+0xa8/0x110
[ 106.385059][ T5987] uart_port_unlock_deref+0x111/0x2f0
[ 106.385069][ T5987] uart_write+0xe8/0x130
[ 106.385077][ T5987] n_tty_write+0xd78/0x12a0
[ 106.385090][ T5987] file_tty_write+0x559/0xa20
[ 106.385098][ T5987] vfs_write+0x5c9/0xb30
[ 106.385110][ T5987] ksys_write+0x145/0x250
[ 106.385121][ T5987] do_syscall_64+0xfa/0xf80
[ 106.385129][ T5987] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.385142][ T5987]
[ 106.385142][ T5987] -> #1 (&port_lock_key){-.-.}-{3:3}:
[ 106.385153][ T5987] _raw_spin_lock_irqsave+0xa7/0xf0
[ 106.385160][ T5987] serial8250_console_write+0x17e/0x1ba0
[ 106.385170][ T5987] console_flush_all+0x745/0xb60
[ 106.385179][ T5987] console_unlock+0xbb/0x190
[ 106.385187][ T5987] vprintk_emit+0x4f8/0x5f0
[ 106.385194][ T5987] _printk+0xcf/0x120
[ 106.385207][ T5987] register_console+0xa8b/0xf90
[ 106.385216][ T5987] univ8250_console_init+0x3a/0x70
[ 106.385229][ T5987] console_init+0xfc/0x3f0
[ 106.385239][ T5987] start_kernel+0x252/0x400
[ 106.385246][ T5987] x86_64_start_reservations+0x24/0x30
[ 106.385255][ T5987] x86_64_start_kernel+0x143/0x1c0
[ 106.385265][ T5987] common_startup_64+0x13e/0x147
[ 106.385272][ T5987]
[ 106.385272][ T5987] -> #0 (console_owner){....}-{0:0}:
[ 106.385284][ T5987] __lock_acquire+0x15a6/0x2cf0
[ 106.385297][ T5987] lock_acquire+0x117/0x340
[ 106.385307][ T5987] console_flush_all+0x6ee/0xb60
[ 106.385316][ T5987] console_unlock+0xbb/0x190
[ 106.385323][ T5987] vprintk_emit+0x4f8/0x5f0
[ 106.385330][ T5987] _printk+0xcf/0x120
[ 106.385341][ T5987] __report_bug+0x305/0x500
[ 106.385349][ T5987] report_bug+0x16a/0x220
[ 106.385356][ T5987] handle_bug+0x98/0x200
[ 106.385365][ T5987] exc_invalid_op+0x1a/0x50
[ 106.385375][ T5987] asm_exc_invalid_op+0x1a/0x20
[ 106.385382][ T5987] sched_change_end+0x4f6/0x640
[ 106.385390][ T5987] rt_mutex_setprio+0x488/0xb70
[ 106.385401][ T5987] remove_waiter+0x7f5/0xaf0
[ 106.385412][ T5987] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 106.385423][ T5987] futex_lock_pi+0x530/0xa90
[ 106.385431][ T5987] do_futex+0x292/0x420
[ 106.385444][ T5987] __se_sys_futex+0x36f/0x400
[ 106.385455][ T5987] do_syscall_64+0xfa/0xf80
[ 106.385463][ T5987] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.385470][ T5987]
[ 106.385470][ T5987] other info that might help us debug this:
[ 106.385470][ T5987]
[ 106.385473][ T5987] Chain exists of:
[ 106.385473][ T5987] console_owner --> &p->pi_lock --> &rq->__lock
[ 106.385473][ T5987]
[ 106.385487][ T5987] Possible unsafe locking scenario:
[ 106.385487][ T5987]
[ 106.385489][ T5987] CPU0 CPU1
[ 106.385492][ T5987] ---- ----
[ 106.385495][ T5987] lock(&rq->__lock);
[ 106.385500][ T5987] lock(&p->pi_lock);
[ 106.385506][ T5987] lock(&rq->__lock);
[ 106.385512][ T5987] lock(console_owner);
[ 106.385517][ T5987]
[ 106.385517][ T5987] *** DEADLOCK ***
[ 106.385517][ T5987]
[ 106.385520][ T5987] 5 locks held by syz.0.17/5987:
[ 106.385525][ T5987] #0: ffff888075889828 (&pi_futex_key){....}-{2:2}, at: rt_mutex_cleanup_proxy_lock+0x23/0x100
[ 106.385548][ T5987] #1: ffff88807d02a8e8 (&p->pi_lock){-.-.}-{2:2}, at: remove_waiter+0x286/0xaf0
[ 106.385570][ T5987] #2: ffff8880b863ab18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 106.385601][ T5987] #3: ffffffff8e3331e0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x120
[ 106.385623][ T5987] #4: ffffffff8e21aa98 (console_srcu){....}-{0:0}, at: console_flush_all+0x131/0xb60
[ 106.385644][ T5987]
[ 106.385644][ T5987] stack backtrace:
[ 106.385657][ T5987] CPU: 1 UID: 0 PID: 5987 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 106.385667][ T5987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 106.385679][ T5987] Call Trace:
[ 106.385683][ T5987]
[ 106.385689][ T5987] dump_stack_lvl+0x189/0x250
[ 106.385699][ T5987] ? __pfx_dump_stack_lvl+0x10/0x10
[ 106.385708][ T5987] ? __pfx__printk+0x10/0x10
[ 106.385802][ T5987] ? print_lock_name+0xde/0x100
[ 106.385840][ T5987] print_circular_bug+0x2e2/0x300
[ 106.385854][ T5987] check_noncircular+0x12e/0x150
[ 106.385865][ T5987] __lock_acquire+0x15a6/0x2cf0
[ 106.385884][ T5987] ? console_flush_all+0x131/0xb60
[ 106.385894][ T5987] lock_acquire+0x117/0x340
[ 106.385906][ T5987] ? console_flush_all+0x131/0xb60
[ 106.385917][ T5987] ? do_raw_spin_unlock+0x122/0x240
[ 106.385928][ T5987] ? console_flush_all+0x131/0xb60
[ 106.385937][ T5987] console_flush_all+0x6ee/0xb60
[ 106.385946][ T5987] ? console_flush_all+0x131/0xb60
[ 106.385956][ T5987] ? console_flush_all+0x131/0xb60
[ 106.385967][ T5987] ? __pfx_console_flush_all+0x10/0x10
[ 106.385977][ T5987] ? is_bpf_text_address+0x26/0x2b0
[ 106.386000][ T5987] ? is_printk_cpu_sync_owner+0x32/0x40
[ 106.386015][ T5987] console_unlock+0xbb/0x190
[ 106.386024][ T5987] ? __pfx___down_trylock_console_sem+0x10/0x10
[ 106.386034][ T5987] ? __pfx_console_unlock+0x10/0x10
[ 106.386044][ T5987] vprintk_emit+0x4f8/0x5f0
[ 106.386053][ T5987] ? __pfx_vprintk_emit+0x10/0x10
[ 106.386062][ T5987] ? __lock_acquire+0x6b6/0x2cf0
[ 106.386075][ T5987] ? __lock_acquire+0x6b6/0x2cf0
[ 106.386088][ T5987] _printk+0xcf/0x120
[ 106.386102][ T5987] ? __pfx__printk+0x10/0x10
[ 106.386114][ T5987] ? kvm_wait+0x188/0x290
[ 106.386124][ T5987] ? find_bug+0xa5/0x370
[ 106.386133][ T5987] ? sched_change_end+0x4f6/0x640
[ 106.386143][ T5987] ? sched_change_end+0x4f6/0x640
[ 106.386151][ T5987] __report_bug+0x305/0x500
[ 106.386160][ T5987] ? sched_change_end+0x4f6/0x640
[ 106.386170][ T5987] ? __pfx___report_bug+0x10/0x10
[ 106.386178][ T5987] ? rcu_read_lock_sched_held+0x89/0x100
[ 106.386188][ T5987] ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[ 106.386199][ T5987] ? sched_change_end+0x4f6/0x640
[ 106.386207][ T5987] report_bug+0x16a/0x220
[ 106.386216][ T5987] ? sched_change_end+0x4f6/0x640
[ 106.386223][ T5987] ? sched_change_end+0x4f8/0x640
[ 106.386231][ T5987] handle_bug+0x98/0x200
[ 106.386244][ T5987] exc_invalid_op+0x1a/0x50
[ 106.386255][ T5987] asm_exc_invalid_op+0x1a/0x20
[ 106.386264][ T5987] RIP: 0010:sched_change_end+0x4f6/0x640
[ 106.386275][ T5987] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 106.386283][ T5987] RSP: 0018:ffffc90002f67850 EFLAGS: 00010046
[ 106.386292][ T5987] RAX: 1ffff1100fa053d0 RBX: ffffffff8dcbdf90 RCX: ffffffff8193220f
[ 106.386299][ T5987] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88807d029e80
[ 106.386305][ T5987] RBP: ffff88807d02a128 R08: ffff88807d029e87 R09: 1ffff1100fa053d0
[ 106.386311][ T5987] R10: dffffc0000000000 R11: ffffed100fa053d1 R12: dffffc0000000000
[ 106.386317][ T5987] R13: ffff88807d029e80 R14: ffff8880b863ab00 R15: ffff88807d029e80
[ 106.386326][ T5987] ? sched_change_end+0x4af/0x640
[ 106.386338][ T5987] rt_mutex_setprio+0x488/0xb70
[ 106.386354][ T5987] remove_waiter+0x7f5/0xaf0
[ 106.386370][ T5987] ? lockdep_hardirqs_on+0x98/0x140
[ 106.386380][ T5987] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 106.386394][ T5987] futex_lock_pi+0x530/0xa90
[ 106.386406][ T5987] ? __pfx_futex_lock_pi+0x10/0x10
[ 106.386418][ T5987] ? futex_hash+0x40/0x2d0
[ 106.386430][ T5987] ? futex_hash+0x2ad/0x2d0
[ 106.386442][ T5987] ? __pfx_futex_wake_mark+0x10/0x10
[ 106.386452][ T5987] ? __pfx_futex_wake+0x10/0x10
[ 106.386462][ T5987] ? handle_mm_fault+0xdb/0x32b0
[ 106.386476][ T5987] do_futex+0x292/0x420
[ 106.386491][ T5987] ? __pfx_do_futex+0x10/0x10
[ 106.386505][ T5987] __se_sys_futex+0x36f/0x400
[ 106.386519][ T5987] ? __pfx___se_sys_futex+0x10/0x10
[ 106.386533][ T5987] ? __x64_sys_futex+0x21/0xf0
[ 106.386546][ T5987] do_syscall_64+0xfa/0xf80
[ 106.386555][ T5987] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.386564][ T5987] ? clear_bhb_loop+0x60/0xb0
[ 106.386573][ T5987] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 106.386582][ T5987] RIP: 0033:0x7f411198f749
[ 106.386602][ T5987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 106.386610][ T5987] RSP: 002b:00007ffcfbf89a88 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 106.386619][ T5987] RAX: ffffffffffffffda RBX: 00007f4111be5fa0 RCX: 00007f411198f749
[ 106.386625][ T5987] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 000020000000cffc
[ 106.386630][ T5987] RBP: 00007f4111a13f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 106.386636][ T5987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 106.386641][ T5987] R13: 00007f4111be5fa0 R14: 00007f4111be5fa0 R15: 0000000000000006
[ 106.386663][ T5987]
[ 107.799808][ T5987] WARNING: kernel/sched/core.c:10852 at sched_change_end+0x4f6/0x640, CPU#1: syz.0.17/5987
[ 107.811783][ T5987] Modules linked in:
[ 107.816013][ T5987] CPU: 1 UID: 0 PID: 5987 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 107.826331][ T5987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 107.837614][ T5987] RIP: 0010:sched_change_end+0x4f6/0x640
[ 107.844945][ T5987] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 107.867676][ T5987] RSP: 0018:ffffc90002f67850 EFLAGS: 00010046
[ 107.874108][ T5987] RAX: 1ffff1100fa053d0 RBX: ffffffff8dcbdf90 RCX: ffffffff8193220f
[ 107.884184][ T5987] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88807d029e80
[ 107.893074][ T5987] RBP: ffff88807d02a128 R08: ffff88807d029e87 R09: 1ffff1100fa053d0
[ 107.901195][ T5987] R10: dffffc0000000000 R11: ffffed100fa053d1 R12: dffffc0000000000
[ 107.910579][ T5987] R13: ffff88807d029e80 R14: ffff8880b863ab00 R15: ffff88807d029e80
[ 107.920852][ T5987] FS: 000055556f95a500(0000) GS:ffff888125adc000(0000) knlGS:0000000000000000
[ 107.930494][ T5987] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 107.937260][ T5987] CR2: 000020000000cffc CR3: 00000000759c4000 CR4: 00000000003526f0
[ 107.946259][ T5987] Call Trace:
[ 107.950250][ T5987]
[ 107.953833][ T5987] rt_mutex_setprio+0x488/0xb70
[ 107.959235][ T5987] remove_waiter+0x7f5/0xaf0
[ 107.966932][ T5987] ? lockdep_hardirqs_on+0x98/0x140
[ 107.973211][ T5987] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 107.979832][ T5987] futex_lock_pi+0x530/0xa90
[ 107.985014][ T5987] ? __pfx_futex_lock_pi+0x10/0x10
[ 107.990916][ T5987] ? futex_hash+0x40/0x2d0
[ 107.995744][ T5987] ? futex_hash+0x2ad/0x2d0
[ 108.001579][ T5987] ? __pfx_futex_wake_mark+0x10/0x10
[ 108.007957][ T5987] ? __pfx_futex_wake+0x10/0x10
[ 108.012998][ T5987] ? handle_mm_fault+0xdb/0x32b0
[ 108.018723][ T5987] do_futex+0x292/0x420
[ 108.023389][ T5987] ? __pfx_do_futex+0x10/0x10
[ 108.028373][ T5987] __se_sys_futex+0x36f/0x400
[ 108.033418][ T5987] ? __pfx___se_sys_futex+0x10/0x10
[ 108.038740][ T5987] ? __x64_sys_futex+0x21/0xf0
[ 108.044909][ T5987] do_syscall_64+0xfa/0xf80
[ 108.050133][ T5987] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.058292][ T5987] ? clear_bhb_loop+0x60/0xb0
[ 108.063391][ T5987] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.070392][ T5987] RIP: 0033:0x7f411198f749
[ 108.075257][ T5987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 108.098409][ T5987] RSP: 002b:00007ffcfbf89a88 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 108.108087][ T5987] RAX: ffffffffffffffda RBX: 00007f4111be5fa0 RCX: 00007f411198f749
[ 108.116541][ T5987] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 000020000000cffc
[ 108.124981][ T5987] RBP: 00007f4111a13f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 108.133642][ T5987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 108.144333][ T5987] R13: 00007f4111be5fa0 R14: 00007f4111be5fa0 R15: 0000000000000006
[ 108.153445][ T5987]
[ 108.156454][ T5987] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 108.164000][ T5987] CPU: 1 UID: 0 PID: 5987 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 108.173654][ T5987] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 108.184483][ T5987] Call Trace:
[ 108.187973][ T5987]
[ 108.191167][ T5987] dump_stack_lvl+0x99/0x250
[ 108.196370][ T5987] ? __asan_memcpy+0x40/0x70
[ 108.201939][ T5987] ? __pfx_dump_stack_lvl+0x10/0x10
[ 108.207953][ T5987] ? __pfx__printk+0x10/0x10
[ 108.213553][ T5987] vpanic+0x237/0x6d0
[ 108.217723][ T5987] ? __pfx_vpanic+0x10/0x10
[ 108.222660][ T5987] ? is_bpf_text_address+0x292/0x2b0
[ 108.228056][ T5987] ? is_bpf_text_address+0x26/0x2b0
[ 108.233723][ T5987] panic+0xb9/0xc0
[ 108.238045][ T5987] ? __pfx_panic+0x10/0x10
[ 108.242773][ T5987] __warn+0x317/0x4b0
[ 108.247285][ T5987] ? sched_change_end+0x4f6/0x640
[ 108.253203][ T5987] ? sched_change_end+0x4f6/0x640
[ 108.259487][ T5987] __report_bug+0x288/0x500
[ 108.264272][ T5987] ? sched_change_end+0x4f6/0x640
[ 108.270314][ T5987] ? __pfx___report_bug+0x10/0x10
[ 108.276156][ T5987] ? rcu_read_lock_sched_held+0x89/0x100
[ 108.283017][ T5987] ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[ 108.290102][ T5987] ? sched_change_end+0x4f6/0x640
[ 108.295913][ T5987] report_bug+0x16a/0x220
[ 108.300578][ T5987] ? sched_change_end+0x4f6/0x640
[ 108.306140][ T5987] ? sched_change_end+0x4f8/0x640
[ 108.311485][ T5987] handle_bug+0x98/0x200
[ 108.316884][ T5987] exc_invalid_op+0x1a/0x50
[ 108.321919][ T5987] asm_exc_invalid_op+0x1a/0x20
[ 108.327794][ T5987] RIP: 0010:sched_change_end+0x4f6/0x640
[ 108.333874][ T5987] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 108.357108][ T5987] RSP: 0018:ffffc90002f67850 EFLAGS: 00010046
[ 108.365451][ T5987] RAX: 1ffff1100fa053d0 RBX: ffffffff8dcbdf90 RCX: ffffffff8193220f
[ 108.374285][ T5987] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88807d029e80
[ 108.384488][ T5987] RBP: ffff88807d02a128 R08: ffff88807d029e87 R09: 1ffff1100fa053d0
[ 108.393958][ T5987] R10: dffffc0000000000 R11: ffffed100fa053d1 R12: dffffc0000000000
[ 108.402843][ T5987] R13: ffff88807d029e80 R14: ffff8880b863ab00 R15: ffff88807d029e80
[ 108.411563][ T5987] ? sched_change_end+0x4af/0x640
[ 108.417314][ T5987] rt_mutex_setprio+0x488/0xb70
[ 108.422445][ T5987] remove_waiter+0x7f5/0xaf0
[ 108.427898][ T5987] ? lockdep_hardirqs_on+0x98/0x140
[ 108.433291][ T5987] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 108.439990][ T5987] futex_lock_pi+0x530/0xa90
[ 108.444972][ T5987] ? __pfx_futex_lock_pi+0x10/0x10
[ 108.451084][ T5987] ? futex_hash+0x40/0x2d0
[ 108.456735][ T5987] ? futex_hash+0x2ad/0x2d0
[ 108.462565][ T5987] ? __pfx_futex_wake_mark+0x10/0x10
[ 108.468399][ T5987] ? __pfx_futex_wake+0x10/0x10
[ 108.473522][ T5987] ? handle_mm_fault+0xdb/0x32b0
[ 108.478856][ T5987] do_futex+0x292/0x420
[ 108.483209][ T5987] ? __pfx_do_futex+0x10/0x10
[ 108.488667][ T5987] __se_sys_futex+0x36f/0x400
[ 108.493814][ T5987] ? __pfx___se_sys_futex+0x10/0x10
[ 108.500209][ T5987] ? __x64_sys_futex+0x21/0xf0
[ 108.505480][ T5987] do_syscall_64+0xfa/0xf80
[ 108.510276][ T5987] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.517214][ T5987] ? clear_bhb_loop+0x60/0xb0
[ 108.522152][ T5987] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 108.529622][ T5987] RIP: 0033:0x7f411198f749
[ 108.534266][ T5987] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 108.562733][ T5987] RSP: 002b:00007ffcfbf89a88 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 108.572901][ T5987] RAX: ffffffffffffffda RBX: 00007f4111be5fa0 RCX: 00007f411198f749
[ 108.582109][ T5987] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 000020000000cffc
[ 108.590707][ T5987] RBP: 00007f4111a13f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 108.600226][ T5987] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 108.608611][ T5987] R13: 00007f4111be5fa0 R14: 00007f4111be5fa0 R15: 0000000000000006
[ 108.617289][ T5987]
[ 109.791894][ T5987] Shutting down cpus with NMI
[ 109.798308][ T5987] Kernel Offset: disabled
[ 109.803297][ T5987] Rebooting in 86400 seconds..