Warning: Permanently added '10.128.1.233' (ED25519) to the list of known hosts.
2025/12/17 02:29:39 parsed 1 programs
[ 95.402237][ T5839] cgroup: Unknown subsys name 'net'
[ 95.593002][ T5839] cgroup: Unknown subsys name 'cpuset'
[ 95.603070][ T5839] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 97.260335][ T10] cfg80211: failed to load regulatory.db
[ 97.272491][ T5839] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 100.187858][ T5847] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 101.747069][ T53] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 101.754940][ T53] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 101.763110][ T53] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 101.771705][ T53] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 101.781874][ T53] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 102.774893][ T12] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 102.783552][ T12] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 102.825572][ T12] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 102.835414][ T12] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 103.426976][ T5906] chnl_net:caif_netlink_parms(): no params data found
[ 103.545473][ T5906] bridge0: port 1(bridge_slave_0) entered blocking state
[ 103.553333][ T5906] bridge0: port 1(bridge_slave_0) entered disabled state
[ 103.561418][ T5906] bridge_slave_0: entered allmulticast mode
[ 103.569788][ T5906] bridge_slave_0: entered promiscuous mode
[ 103.579460][ T5906] bridge0: port 2(bridge_slave_1) entered blocking state
[ 103.586700][ T5906] bridge0: port 2(bridge_slave_1) entered disabled state
[ 103.594419][ T5906] bridge_slave_1: entered allmulticast mode
[ 103.601917][ T5906] bridge_slave_1: entered promiscuous mode
[ 103.642025][ T5906] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 103.655255][ T5906] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 103.697762][ T5906] team0: Port device team_slave_0 added
[ 103.705997][ T5906] team0: Port device team_slave_1 added
[ 103.737111][ T5906] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 103.745182][ T5906] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 103.771151][ T5906] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 103.784048][ T5906] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 103.791071][ T5906] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 103.817193][ T5906] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 103.870086][ T5906] hsr_slave_0: entered promiscuous mode
[ 103.876938][ T5906] hsr_slave_1: entered promiscuous mode
[ 104.062813][ T5906] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 104.076659][ T5906] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 104.087277][ T5906] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 104.100791][ T5906] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 104.190541][ T5906] 8021q: adding VLAN 0 to HW filter on device bond0
[ 104.214121][ T5906] 8021q: adding VLAN 0 to HW filter on device team0
[ 104.227576][ T3430] bridge0: port 1(bridge_slave_0) entered blocking state
[ 104.234999][ T3430] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 104.253651][ T1305] bridge0: port 2(bridge_slave_1) entered blocking state
[ 104.260876][ T1305] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 104.465323][ T5906] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 104.517721][ T5906] veth0_vlan: entered promiscuous mode
[ 104.532048][ T5906] veth1_vlan: entered promiscuous mode
[ 104.566233][ T5906] veth0_macvtap: entered promiscuous mode
[ 104.577884][ T5906] veth1_macvtap: entered promiscuous mode
[ 104.601539][ T5906] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 104.617284][ T5906] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 104.634365][ T12] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 104.645582][ T12] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 104.656354][ T12] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 104.667044][ T12] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 104.822028][ T12] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 104.891766][ T12] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 104.960975][ T12] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 105.049319][ T12] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
2025/12/17 02:29:52 executed programs: 0
[ 105.775071][ T5151] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 105.785711][ T5151] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 105.794460][ T5151] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 105.803385][ T5151] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 105.811357][ T5151] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 105.997473][ T5943] chnl_net:caif_netlink_parms(): no params data found
[ 106.086446][ T5943] bridge0: port 1(bridge_slave_0) entered blocking state
[ 106.094311][ T5943] bridge0: port 1(bridge_slave_0) entered disabled state
[ 106.102208][ T5943] bridge_slave_0: entered allmulticast mode
[ 106.109751][ T5943] bridge_slave_0: entered promiscuous mode
[ 106.117984][ T5943] bridge0: port 2(bridge_slave_1) entered blocking state
[ 106.125363][ T5943] bridge0: port 2(bridge_slave_1) entered disabled state
[ 106.132595][ T5943] bridge_slave_1: entered allmulticast mode
[ 106.140864][ T5943] bridge_slave_1: entered promiscuous mode
[ 106.179345][ T5943] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 106.192706][ T5943] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 106.234363][ T5943] team0: Port device team_slave_0 added
[ 106.243558][ T5943] team0: Port device team_slave_1 added
[ 106.280199][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 106.287193][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 106.313499][ T5943] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 106.326450][ T5943] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 106.333781][ T5943] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 106.360907][ T5943] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 106.417311][ T5943] hsr_slave_0: entered promiscuous mode
[ 106.423969][ T5943] hsr_slave_1: entered promiscuous mode
[ 106.430507][ T5943] debugfs: 'hsr0' already exists in 'hsr'
[ 106.436341][ T5943] Cannot create hsr debugfs directory
[ 107.882520][ T12] bridge_slave_1: left allmulticast mode
[ 107.888323][ T12] bridge_slave_1: left promiscuous mode
[ 107.894946][ T12] bridge0: port 2(bridge_slave_1) entered disabled state
[ 107.907443][ T12] bridge_slave_0: left allmulticast mode
[ 107.909458][ T53] Bluetooth: hci0: command tx timeout
[ 107.914599][ T12] bridge_slave_0: left promiscuous mode
[ 107.927930][ T12] bridge0: port 1(bridge_slave_0) entered disabled state
[ 108.176613][ T12] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 108.190001][ T12] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 108.200639][ T12] bond0 (unregistering): Released all slaves
[ 108.317502][ T12] hsr_slave_0: left promiscuous mode
[ 108.324036][ T12] hsr_slave_1: left promiscuous mode
[ 108.332279][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 108.343465][ T12] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 108.352539][ T12] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 108.369021][ T12] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 108.409155][ T12] veth1_macvtap: left promiscuous mode
[ 108.415297][ T12] veth0_macvtap: left promiscuous mode
[ 108.421237][ T12] veth1_vlan: left promiscuous mode
[ 108.426761][ T12] veth0_vlan: left promiscuous mode
[ 108.891637][ T12] team0 (unregistering): Port device team_slave_1 removed
[ 108.921650][ T12] team0 (unregistering): Port device team_slave_0 removed
[ 109.481505][ T5943] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 109.499118][ T5943] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 109.517070][ T5943] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 109.531153][ T5943] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 109.972333][ T5943] 8021q: adding VLAN 0 to HW filter on device bond0
[ 109.989417][ T53] Bluetooth: hci0: command tx timeout
[ 110.043281][ T5943] 8021q: adding VLAN 0 to HW filter on device team0
[ 110.060521][ T4545] bridge0: port 1(bridge_slave_0) entered blocking state
[ 110.067915][ T4545] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 110.121169][ T4545] bridge0: port 2(bridge_slave_1) entered blocking state
[ 110.128470][ T4545] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 110.320142][ T5943] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 110.372339][ T5943] veth0_vlan: entered promiscuous mode
[ 110.385798][ T5943] veth1_vlan: entered promiscuous mode
[ 110.417755][ T5943] veth0_macvtap: entered promiscuous mode
[ 110.428462][ T5943] veth1_macvtap: entered promiscuous mode
[ 110.449184][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 110.464584][ T5943] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 110.483113][ T1305] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.493408][ T1305] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.503615][ T1305] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.514475][ T1305] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 110.576178][ T3430] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 110.588324][ T3430] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 110.620973][ T4545] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 110.629561][ T4545] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 112.058894][ T5151] Bluetooth: hci0: command tx timeout
2025/12/17 02:30:00 executed programs: 3
[ 114.139271][ T5151] Bluetooth: hci0: command tx timeout
[ 116.700529][ T5991] ------------[ cut here ]------------
[ 116.700829][ T5991]
[ 116.700835][ T5991] ======================================================
[ 116.700846][ T5991] WARNING: possible circular locking dependency detected
[ 116.700859][ T5991] syzkaller #0 Not tainted
[ 116.700867][ T5991] ------------------------------------------------------
[ 116.700873][ T5991] syz.0.18/5991 is trying to acquire lock:
[ 116.700881][ T5991] ffffffff8df35980 (console_owner){....}-{0:0}, at: console_flush_all+0x131/0xb60
[ 116.700930][ T5991]
[ 116.700930][ T5991] but task is already holding lock:
[ 116.700935][ T5991] ffff8880b863a918 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 116.700969][ T5991]
[ 116.700969][ T5991] which lock already depends on the new lock.
[ 116.700969][ T5991]
[ 116.700974][ T5991]
[ 116.700974][ T5991] the existing dependency chain (in reverse order) is:
[ 116.700979][ T5991]
[ 116.700979][ T5991] -> #4 (&rq->__lock){-.-.}-{2:2}:
[ 116.700999][ T5991] _raw_spin_lock_nested+0x32/0x50
[ 116.701017][ T5991] raw_spin_rq_lock_nested+0x2a/0x140
[ 116.701039][ T5991] task_rq_lock+0xbc/0x470
[ 116.701053][ T5991] cgroup_move_task+0x92/0x2a0
[ 116.701071][ T5991] css_set_move_task+0x658/0x9e0
[ 116.701087][ T5991] cgroup_post_fork+0x1ef/0x7a0
[ 116.701101][ T5991] copy_process+0x3614/0x3950
[ 116.701118][ T5991] kernel_clone+0x21e/0x820
[ 116.701133][ T5991] user_mode_thread+0xdd/0x140
[ 116.701150][ T5991] rest_init+0x23/0x300
[ 116.701170][ T5991] start_kernel+0x3a7/0x400
[ 116.701186][ T5991] x86_64_start_reservations+0x24/0x30
[ 116.701209][ T5991] x86_64_start_kernel+0x143/0x1c0
[ 116.701231][ T5991] common_startup_64+0x13e/0x147
[ 116.701249][ T5991]
[ 116.701249][ T5991] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[ 116.701269][ T5991] _raw_spin_lock_irqsave+0xa7/0xf0
[ 116.701283][ T5991] try_to_wake_up+0x67/0x12b0
[ 116.701308][ T5991] __wake_up_common_lock+0x137/0x1f0
[ 116.701330][ T5991] tty_port_default_wakeup+0xfb/0x170
[ 116.701346][ T5991] serial8250_tx_chars+0x72e/0x970
[ 116.701369][ T5991] serial8250_handle_irq+0x633/0xbb0
[ 116.701381][ T5991] serial8250_default_handle_irq+0xbf/0x200
[ 116.701398][ T5991] serial8250_interrupt+0x8d/0x180
[ 116.701418][ T5991] __handle_irq_event_percpu+0x285/0xa60
[ 116.701440][ T5991] handle_irq_event+0x8b/0x1e0
[ 116.701460][ T5991] handle_edge_irq+0x23b/0xa10
[ 116.701479][ T5991] __common_interrupt+0x141/0x1f0
[ 116.701501][ T5991] common_interrupt+0xb6/0xe0
[ 116.701522][ T5991] asm_common_interrupt+0x26/0x40
[ 116.701536][ T5991] unwind_next_frame+0x6f2/0x23d0
[ 116.701553][ T5991] arch_stack_walk+0x11c/0x150
[ 116.701569][ T5991] stack_trace_save+0x9c/0xe0
[ 116.701581][ T5991] kasan_save_track+0x3e/0x80
[ 116.701595][ T5991] kasan_save_free_info+0x46/0x50
[ 116.701617][ T5991] __kasan_slab_free+0x5c/0x80
[ 116.701632][ T5991] slab_free_after_rcu_debug+0x125/0x260
[ 116.701651][ T5991] rcu_core+0xd70/0x1870
[ 116.701667][ T5991] handle_softirqs+0x27d/0x850
[ 116.701682][ T5991] run_ksoftirqd+0x9b/0x100
[ 116.701698][ T5991] smpboot_thread_fn+0x542/0xa60
[ 116.701715][ T5991] kthread+0x711/0x8a0
[ 116.701733][ T5991] ret_from_fork+0x599/0xb30
[ 116.701745][ T5991] ret_from_fork_asm+0x1a/0x30
[ 116.701765][ T5991]
[ 116.701765][ T5991] -> #2 (&tty->write_wait){-.-.}-{3:3}:
[ 116.701786][ T5991] _raw_spin_lock_irqsave+0xa7/0xf0
[ 116.701801][ T5991] __wake_up_common_lock+0x2f/0x1f0
[ 116.701822][ T5991] tty_port_default_wakeup+0xfb/0x170
[ 116.701838][ T5991] serial8250_tx_chars+0x72e/0x970
[ 116.701861][ T5991] serial8250_handle_irq+0x633/0xbb0
[ 116.701873][ T5991] serial8250_default_handle_irq+0xbf/0x200
[ 116.701890][ T5991] serial8250_interrupt+0x8d/0x180
[ 116.701910][ T5991] __handle_irq_event_percpu+0x285/0xa60
[ 116.701931][ T5991] handle_irq_event+0x8b/0x1e0
[ 116.701951][ T5991] handle_edge_irq+0x23b/0xa10
[ 116.701970][ T5991] __common_interrupt+0x141/0x1f0
[ 116.701991][ T5991] common_interrupt+0xb6/0xe0
[ 116.702013][ T5991] asm_common_interrupt+0x26/0x40
[ 116.702031][ T5991] pv_native_safe_halt+0x13/0x20
[ 116.702047][ T5991] default_idle+0x13/0x20
[ 116.702066][ T5991] default_idle_call+0x73/0xb0
[ 116.702086][ T5991] do_idle+0x1ea/0x520
[ 116.702103][ T5991] cpu_startup_entry+0x44/0x60
[ 116.702119][ T5991] rest_init+0x2de/0x300
[ 116.702140][ T5991] start_kernel+0x3a7/0x400
[ 116.702155][ T5991] x86_64_start_reservations+0x24/0x30
[ 116.702178][ T5991] x86_64_start_kernel+0x143/0x1c0
[ 116.702200][ T5991] common_startup_64+0x13e/0x147
[ 116.702217][ T5991]
[ 116.702217][ T5991] -> #1 (&port_lock_key){-.-.}-{3:3}:
[ 116.702237][ T5991] _raw_spin_lock_irqsave+0xa7/0xf0
[ 116.702252][ T5991] serial8250_console_write+0x17e/0x1ba0
[ 116.702266][ T5991] console_flush_all+0x745/0xb60
[ 116.702285][ T5991] console_unlock+0xbb/0x190
[ 116.702302][ T5991] vprintk_emit+0x4f8/0x5f0
[ 116.702320][ T5991] _printk+0xcf/0x120
[ 116.702339][ T5991] register_console+0xa8b/0xf90
[ 116.702359][ T5991] univ8250_console_init+0x3a/0x70
[ 116.702373][ T5991] console_init+0xfc/0x3f0
[ 116.702394][ T5991] start_kernel+0x24d/0x400
[ 116.702409][ T5991] x86_64_start_reservations+0x24/0x30
[ 116.702436][ T5991] x86_64_start_kernel+0x143/0x1c0
[ 116.702456][ T5991] common_startup_64+0x13e/0x147
[ 116.702472][ T5991]
[ 116.702472][ T5991] -> #0 (console_owner){....}-{0:0}:
[ 116.702490][ T5991] __lock_acquire+0x15a6/0x2cf0
[ 116.702503][ T5991] lock_acquire+0x117/0x340
[ 116.702515][ T5991] console_flush_all+0x6ee/0xb60
[ 116.702533][ T5991] console_unlock+0xbb/0x190
[ 116.702548][ T5991] vprintk_emit+0x4f8/0x5f0
[ 116.702564][ T5991] _printk+0xcf/0x120
[ 116.702582][ T5991] __report_bug+0x305/0x500
[ 116.702595][ T5991] report_bug+0x16a/0x220
[ 116.702608][ T5991] handle_bug+0x98/0x200
[ 116.702625][ T5991] exc_invalid_op+0x1a/0x50
[ 116.702643][ T5991] asm_exc_invalid_op+0x1a/0x20
[ 116.702654][ T5991] sched_change_end+0x4f6/0x640
[ 116.702670][ T5991] rt_mutex_setprio+0x488/0xb70
[ 116.702682][ T5991] remove_waiter+0x7f5/0xaf0
[ 116.702701][ T5991] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 116.702713][ T5991] futex_lock_pi+0x530/0xa90
[ 116.702729][ T5991] do_futex+0x292/0x420
[ 116.702742][ T5991] __se_sys_futex+0x36f/0x400
[ 116.702756][ T5991] do_syscall_64+0xfa/0xf80
[ 116.702771][ T5991] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 116.702785][ T5991]
[ 116.702785][ T5991] other info that might help us debug this:
[ 116.702785][ T5991]
[ 116.702789][ T5991] Chain exists of:
[ 116.702789][ T5991] console_owner --> &p->pi_lock --> &rq->__lock
[ 116.702789][ T5991]
[ 116.702810][ T5991] Possible unsafe locking scenario:
[ 116.702810][ T5991]
[ 116.702814][ T5991] CPU0 CPU1
[ 116.702818][ T5991] ---- ----
[ 116.702822][ T5991] lock(&rq->__lock);
[ 116.702831][ T5991] lock(&p->pi_lock);
[ 116.702840][ T5991] lock(&rq->__lock);
[ 116.702849][ T5991] lock(console_owner);
[ 116.702858][ T5991]
[ 116.702858][ T5991] *** DEADLOCK ***
[ 116.702858][ T5991]
[ 116.702862][ T5991] 5 locks held by syz.0.18/5991:
[ 116.702870][ T5991] #0: ffff888075cf8b28 (&pi_futex_key){....}-{2:2}, at: rt_mutex_cleanup_proxy_lock+0x23/0x100
[ 116.702902][ T5991] #1: ffff88802f06a8e8 (&p->pi_lock){-.-.}-{2:2}, at: remove_waiter+0x286/0xaf0
[ 116.702940][ T5991] #2: ffff8880b863a918 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 116.702973][ T5991] #3: ffffffff8df359e0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x120
[ 116.703010][ T5991] #4: ffffffff8de1d298 (console_srcu){....}-{0:0}, at: console_flush_all+0x131/0xb60
[ 116.703052][ T5991]
[ 116.703052][ T5991] stack backtrace:
[ 116.703072][ T5991] CPU: 1 UID: 0 PID: 5991 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full)
[ 116.703087][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 116.703103][ T5991] Call Trace:
[ 116.703109][ T5991]
[ 116.703115][ T5991] dump_stack_lvl+0x189/0x250
[ 116.703134][ T5991] ? __pfx_dump_stack_lvl+0x10/0x10
[ 116.703150][ T5991] ? __pfx__printk+0x10/0x10
[ 116.703171][ T5991] ? print_lock_name+0xde/0x100
[ 116.703196][ T5991] print_circular_bug+0x2e2/0x300
[ 116.703215][ T5991] check_noncircular+0x12e/0x150
[ 116.703235][ T5991] __lock_acquire+0x15a6/0x2cf0
[ 116.703258][ T5991] ? console_flush_all+0x131/0xb60
[ 116.703277][ T5991] lock_acquire+0x117/0x340
[ 116.703290][ T5991] ? console_flush_all+0x131/0xb60
[ 116.703312][ T5991] ? do_raw_spin_unlock+0x122/0x240
[ 116.703332][ T5991] ? console_flush_all+0x131/0xb60
[ 116.703352][ T5991] console_flush_all+0x6ee/0xb60
[ 116.703370][ T5991] ? console_flush_all+0x131/0xb60
[ 116.703391][ T5991] ? console_flush_all+0x131/0xb60
[ 116.703412][ T5991] ? __pfx_console_flush_all+0x10/0x10
[ 116.703436][ T5991] ? is_printk_cpu_sync_owner+0x32/0x40
[ 116.703450][ T5991] console_unlock+0xbb/0x190
[ 116.703467][ T5991] ? __pfx___down_trylock_console_sem+0x10/0x10
[ 116.703487][ T5991] ? __pfx_console_unlock+0x10/0x10
[ 116.703508][ T5991] vprintk_emit+0x4f8/0x5f0
[ 116.703526][ T5991] ? __pfx_vprintk_emit+0x10/0x10
[ 116.703544][ T5991] ? __lock_acquire+0x6b6/0x2cf0
[ 116.703559][ T5991] ? __lock_acquire+0x6b6/0x2cf0
[ 116.703579][ T5991] _printk+0xcf/0x120
[ 116.703601][ T5991] ? __pfx__printk+0x10/0x10
[ 116.703620][ T5991] ? trace_irq_disable+0x37/0x100
[ 116.703641][ T5991] ? find_bug+0xa5/0x370
[ 116.703655][ T5991] ? sched_change_end+0x4f6/0x640
[ 116.703673][ T5991] ? sched_change_end+0x4f6/0x640
[ 116.703690][ T5991] __report_bug+0x305/0x500
[ 116.703705][ T5991] ? sched_change_end+0x4f6/0x640
[ 116.703725][ T5991] ? __pfx___report_bug+0x10/0x10
[ 116.703740][ T5991] ? rcu_read_lock_sched_held+0x89/0x100
[ 116.703758][ T5991] ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[ 116.703782][ T5991] ? sched_change_end+0x4f6/0x640
[ 116.703799][ T5991] report_bug+0x16a/0x220
[ 116.703814][ T5991] ? sched_change_end+0x4f6/0x640
[ 116.703831][ T5991] ? sched_change_end+0x4f8/0x640
[ 116.703848][ T5991] handle_bug+0x98/0x200
[ 116.703867][ T5991] exc_invalid_op+0x1a/0x50
[ 116.703886][ T5991] asm_exc_invalid_op+0x1a/0x20
[ 116.703898][ T5991] RIP: 0010:sched_change_end+0x4f6/0x640
[ 116.703917][ T5991] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d e9 be de cb 09 cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 116.703929][ T5991] RSP: 0018:ffffc90003e5f850 EFLAGS: 00010046
[ 116.703941][ T5991] RAX: 1ffff11005e0d3d0 RBX: ffffffff8d9a4810 RCX: ffffffff8192ed2f
[ 116.703952][ T5991] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802f069e80
[ 116.703961][ T5991] RBP: ffff88802f06a128 R08: ffff88802f069e87 R09: 1ffff11005e0d3d0
[ 116.703971][ T5991] R10: dffffc0000000000 R11: ffffed1005e0d3d1 R12: dffffc0000000000
[ 116.703981][ T5991] R13: ffff88802f069e80 R14: ffff8880b863a900 R15: ffff88802f069e80
[ 116.703995][ T5991] ? sched_change_end+0x4af/0x640
[ 116.704017][ T5991] rt_mutex_setprio+0x488/0xb70
[ 116.704040][ T5991] remove_waiter+0x7f5/0xaf0
[ 116.704063][ T5991] ? lockdep_hardirqs_on+0x98/0x140
[ 116.704080][ T5991] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 116.704094][ T5991] futex_lock_pi+0x530/0xa90
[ 116.704115][ T5991] ? __pfx_futex_lock_pi+0x10/0x10
[ 116.704140][ T5991] ? futex_hash+0x40/0x2d0
[ 116.704151][ T5991] ? futex_hash+0x2ad/0x2d0
[ 116.704165][ T5991] ? __pfx_futex_wake_mark+0x10/0x10
[ 116.704185][ T5991] ? __pfx_futex_wake+0x10/0x10
[ 116.704209][ T5991] do_futex+0x292/0x420
[ 116.704225][ T5991] ? __pfx_do_futex+0x10/0x10
[ 116.704243][ T5991] __se_sys_futex+0x36f/0x400
[ 116.704261][ T5991] ? __pfx___se_sys_futex+0x10/0x10
[ 116.704279][ T5991] ? __x64_sys_futex+0x21/0xf0
[ 116.704295][ T5991] do_syscall_64+0xfa/0xf80
[ 116.704311][ T5991] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 116.704325][ T5991] ? clear_bhb_loop+0x60/0xb0
[ 116.704340][ T5991] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 116.704353][ T5991] RIP: 0033:0x7fa03558f749
[ 116.704370][ T5991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 116.704381][ T5991] RSP: 002b:00007fffa7715ab8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 116.704394][ T5991] RAX: ffffffffffffffda RBX: 00007fa0357e5fa0 RCX: 00007fa03558f749
[ 116.704404][ T5991] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 0000200000000180
[ 116.704413][ T5991] RBP: 00007fa035613f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 116.704422][ T5991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 116.704430][ T5991] R13: 00007fa0357e5fa0 R14: 00007fa0357e5fa0 R15: 0000000000000006
[ 116.704445][ T5991]
[ 117.963985][ T5991] WARNING: kernel/sched/core.c:10852 at sched_change_end+0x4f6/0x640, CPU#1: syz.0.18/5991
[ 117.974059][ T5991] Modules linked in:
[ 117.977963][ T5991] CPU: 1 UID: 0 PID: 5991 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full)
[ 117.987066][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 117.997117][ T5991] RIP: 0010:sched_change_end+0x4f6/0x640
[ 118.002754][ T5991] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d e9 be de cb 09 cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 118.022356][ T5991] RSP: 0018:ffffc90003e5f850 EFLAGS: 00010046
[ 118.028422][ T5991] RAX: 1ffff11005e0d3d0 RBX: ffffffff8d9a4810 RCX: ffffffff8192ed2f
[ 118.036391][ T5991] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802f069e80
[ 118.044356][ T5991] RBP: ffff88802f06a128 R08: ffff88802f069e87 R09: 1ffff11005e0d3d0
[ 118.052320][ T5991] R10: dffffc0000000000 R11: ffffed1005e0d3d1 R12: dffffc0000000000
[ 118.060400][ T5991] R13: ffff88802f069e80 R14: ffff8880b863a900 R15: ffff88802f069e80
[ 118.068719][ T5991] FS: 0000555556111500(0000) GS:ffff888125f32000(0000) knlGS:0000000000000000
[ 118.077745][ T5991] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 118.084325][ T5991] CR2: 0000001b30263fff CR3: 00000000757b6000 CR4: 00000000003526f0
[ 118.092305][ T5991] Call Trace:
[ 118.095593][ T5991]
[ 118.098529][ T5991] rt_mutex_setprio+0x488/0xb70
[ 118.103495][ T5991] remove_waiter+0x7f5/0xaf0
[ 118.108111][ T5991] ? lockdep_hardirqs_on+0x98/0x140
[ 118.113318][ T5991] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 118.119122][ T5991] futex_lock_pi+0x530/0xa90
[ 118.123744][ T5991] ? __pfx_futex_lock_pi+0x10/0x10
[ 118.128867][ T5991] ? futex_hash+0x40/0x2d0
[ 118.133281][ T5991] ? futex_hash+0x2ad/0x2d0
[ 118.137784][ T5991] ? __pfx_futex_wake_mark+0x10/0x10
[ 118.143074][ T5991] ? __pfx_futex_wake+0x10/0x10
[ 118.147935][ T5991] do_futex+0x292/0x420
[ 118.152092][ T5991] ? __pfx_do_futex+0x10/0x10
[ 118.156769][ T5991] __se_sys_futex+0x36f/0x400
[ 118.161449][ T5991] ? __pfx___se_sys_futex+0x10/0x10
[ 118.166648][ T5991] ? __x64_sys_futex+0x21/0xf0
[ 118.171413][ T5991] do_syscall_64+0xfa/0xf80
[ 118.175920][ T5991] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 118.181987][ T5991] ? clear_bhb_loop+0x60/0xb0
[ 118.186660][ T5991] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 118.192551][ T5991] RIP: 0033:0x7fa03558f749
[ 118.196962][ T5991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 118.216573][ T5991] RSP: 002b:00007fffa7715ab8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 118.224984][ T5991] RAX: ffffffffffffffda RBX: 00007fa0357e5fa0 RCX: 00007fa03558f749
[ 118.232982][ T5991] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 0000200000000180
[ 118.240949][ T5991] RBP: 00007fa035613f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 118.248916][ T5991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 118.256879][ T5991] R13: 00007fa0357e5fa0 R14: 00007fa0357e5fa0 R15: 0000000000000006
[ 118.264859][ T5991]
[ 118.267877][ T5991] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 118.275336][ T5991] CPU: 1 UID: 0 PID: 5991 Comm: syz.0.18 Not tainted syzkaller #0 PREEMPT(full)
[ 118.284515][ T5991] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 118.294691][ T5991] Call Trace:
[ 118.297977][ T5991]
[ 118.300916][ T5991] dump_stack_lvl+0x99/0x250
[ 118.305524][ T5991] ? __asan_memcpy+0x40/0x70
[ 118.310111][ T5991] ? __pfx_dump_stack_lvl+0x10/0x10
[ 118.315322][ T5991] ? __pfx__printk+0x10/0x10
[ 118.319940][ T5991] vpanic+0x237/0x6d0
[ 118.323959][ T5991] ? __pfx_vpanic+0x10/0x10
[ 118.328673][ T5991] ? is_bpf_text_address+0x292/0x2b0
[ 118.334058][ T5991] ? is_bpf_text_address+0x26/0x2b0
[ 118.339266][ T5991] panic+0xb9/0xc0
[ 118.343003][ T5991] ? __pfx_panic+0x10/0x10
[ 118.347436][ T5991] __warn+0x317/0x4b0
[ 118.351436][ T5991] ? sched_change_end+0x4f6/0x640
[ 118.356490][ T5991] ? sched_change_end+0x4f6/0x640
[ 118.361616][ T5991] __report_bug+0x288/0x500
[ 118.366129][ T5991] ? sched_change_end+0x4f6/0x640
[ 118.371162][ T5991] ? __pfx___report_bug+0x10/0x10
[ 118.376187][ T5991] ? rcu_read_lock_sched_held+0x89/0x100
[ 118.381835][ T5991] ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[ 118.387939][ T5991] ? sched_change_end+0x4f6/0x640
[ 118.392987][ T5991] report_bug+0x16a/0x220
[ 118.397329][ T5991] ? sched_change_end+0x4f6/0x640
[ 118.402358][ T5991] ? sched_change_end+0x4f8/0x640
[ 118.407477][ T5991] handle_bug+0x98/0x200
[ 118.411730][ T5991] exc_invalid_op+0x1a/0x50
[ 118.416238][ T5991] asm_exc_invalid_op+0x1a/0x20
[ 118.421107][ T5991] RIP: 0010:sched_change_end+0x4f6/0x640
[ 118.426772][ T5991] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d e9 be de cb 09 cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 118.446588][ T5991] RSP: 0018:ffffc90003e5f850 EFLAGS: 00010046
[ 118.452780][ T5991] RAX: 1ffff11005e0d3d0 RBX: ffffffff8d9a4810 RCX: ffffffff8192ed2f
[ 118.460839][ T5991] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802f069e80
[ 118.468810][ T5991] RBP: ffff88802f06a128 R08: ffff88802f069e87 R09: 1ffff11005e0d3d0
[ 118.476824][ T5991] R10: dffffc0000000000 R11: ffffed1005e0d3d1 R12: dffffc0000000000
[ 118.484795][ T5991] R13: ffff88802f069e80 R14: ffff8880b863a900 R15: ffff88802f069e80
[ 118.492772][ T5991] ? sched_change_end+0x4af/0x640
[ 118.497844][ T5991] rt_mutex_setprio+0x488/0xb70
[ 118.502718][ T5991] remove_waiter+0x7f5/0xaf0
[ 118.507319][ T5991] ? lockdep_hardirqs_on+0x98/0x140
[ 118.512521][ T5991] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 118.518243][ T5991] futex_lock_pi+0x530/0xa90
[ 118.522845][ T5991] ? __pfx_futex_lock_pi+0x10/0x10
[ 118.527973][ T5991] ? futex_hash+0x40/0x2d0
[ 118.532383][ T5991] ? futex_hash+0x2ad/0x2d0
[ 118.536902][ T5991] ? __pfx_futex_wake_mark+0x10/0x10
[ 118.542209][ T5991] ? __pfx_futex_wake+0x10/0x10
[ 118.547099][ T5991] do_futex+0x292/0x420
[ 118.551271][ T5991] ? __pfx_do_futex+0x10/0x10
[ 118.555950][ T5991] __se_sys_futex+0x36f/0x400
[ 118.560629][ T5991] ? __pfx___se_sys_futex+0x10/0x10
[ 118.565832][ T5991] ? __x64_sys_futex+0x21/0xf0
[ 118.570599][ T5991] do_syscall_64+0xfa/0xf80
[ 118.575109][ T5991] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 118.581171][ T5991] ? clear_bhb_loop+0x60/0xb0
[ 118.585875][ T5991] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 118.591775][ T5991] RIP: 0033:0x7fa03558f749
[ 118.596286][ T5991] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 118.616038][ T5991] RSP: 002b:00007fffa7715ab8 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 118.624470][ T5991] RAX: ffffffffffffffda RBX: 00007fa0357e5fa0 RCX: 00007fa03558f749
[ 118.632541][ T5991] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 0000200000000180
[ 118.640608][ T5991] RBP: 00007fa035613f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 118.648763][ T5991] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 118.656733][ T5991] R13: 00007fa0357e5fa0 R14: 00007fa0357e5fa0 R15: 0000000000000006
[ 118.664744][ T5991]
[ 119.781938][ T5991] Shutting down cpus with NMI
[ 119.786973][ T5991] Kernel Offset: disabled
[ 119.791314][ T5991] Rebooting in 86400 seconds..