Warning: Permanently added '[localhost]:29982' (ED25519) to the list of known hosts.
2025/08/03 14:15:50 ignoring optional flag "sandboxArg"="0"
2025/08/03 14:15:51 parsed 1 programs
syzkaller login: [ 88.093629][ T5349] cgroup: Unknown subsys name 'net'
[ 88.166382][ T5349] cgroup: Unknown subsys name 'cpuset'
[ 88.171368][ T5349] cgroup: Unknown subsys name 'rlimit'
[ 89.847311][ T5349] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 91.983844][ T9] cfg80211: failed to load regulatory.db
[ 93.925229][ T5365] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 96.544505][ T5407] chnl_net:caif_netlink_parms(): no params data found
[ 96.614055][ T5407] bridge0: port 1(bridge_slave_0) entered blocking state
[ 96.618156][ T5407] bridge0: port 1(bridge_slave_0) entered disabled state
[ 96.621502][ T5407] bridge_slave_0: entered allmulticast mode
[ 96.626415][ T5407] bridge_slave_0: entered promiscuous mode
[ 96.633475][ T5407] bridge0: port 2(bridge_slave_1) entered blocking state
[ 96.636772][ T5407] bridge0: port 2(bridge_slave_1) entered disabled state
[ 96.640243][ T5407] bridge_slave_1: entered allmulticast mode
[ 96.644638][ T5407] bridge_slave_1: entered promiscuous mode
[ 96.672596][ T5407] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 96.678917][ T5407] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 96.705085][ T5407] team0: Port device team_slave_0 added
[ 96.709650][ T5407] team0: Port device team_slave_1 added
[ 96.734856][ T5407] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 96.737998][ T5407] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 96.750799][ T5407] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 96.759018][ T5407] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 96.765372][ T5407] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 96.778146][ T5407] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 96.822454][ T5407] hsr_slave_0: entered promiscuous mode
[ 96.828274][ T5407] hsr_slave_1: entered promiscuous mode
[ 96.994044][ T5407] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 97.003917][ T5407] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 97.011148][ T5407] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 97.019635][ T5407] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 97.059278][ T5407] bridge0: port 2(bridge_slave_1) entered blocking state
[ 97.062950][ T5407] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 97.067228][ T5407] bridge0: port 1(bridge_slave_0) entered blocking state
[ 97.070488][ T5407] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 97.140119][ T5407] 8021q: adding VLAN 0 to HW filter on device bond0
[ 97.159850][ T43] bridge0: port 1(bridge_slave_0) entered disabled state
[ 97.166389][ T43] bridge0: port 2(bridge_slave_1) entered disabled state
[ 97.177091][ T5407] 8021q: adding VLAN 0 to HW filter on device team0
[ 97.188417][ T43] bridge0: port 1(bridge_slave_0) entered blocking state
[ 97.192233][ T43] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 97.204494][ T43] bridge0: port 2(bridge_slave_1) entered blocking state
[ 97.207849][ T43] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 97.426913][ T5407] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 97.464447][ T5407] veth0_vlan: entered promiscuous mode
[ 97.473543][ T5407] veth1_vlan: entered promiscuous mode
[ 97.505992][ T5407] veth0_macvtap: entered promiscuous mode
[ 97.513570][ T5407] veth1_macvtap: entered promiscuous mode
[ 97.527982][ T5407] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 97.539956][ T5407] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 97.552894][ T43] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.564605][ T43] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.568162][ T43] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.583839][ T43] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.707710][ T43] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 97.758481][ T43] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 97.807722][ T43] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 97.867536][ T43] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 97.958613][ T5434] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 97.964819][ T45] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 97.968794][ T45] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 97.976853][ T45] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 97.980443][ T45] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 98.247976][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 98.251673][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 98.300734][ T1051] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 98.305245][ T1051] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
2025/08/03 14:16:05 executed programs: 0
[ 99.894623][ T4705] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 99.899038][ T4705] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 99.903346][ T4705] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 99.907275][ T4705] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 99.910289][ T4705] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 100.066757][ T5460] chnl_net:caif_netlink_parms(): no params data found
[ 100.128544][ T5460] bridge0: port 1(bridge_slave_0) entered blocking state
[ 100.133222][ T5460] bridge0: port 1(bridge_slave_0) entered disabled state
[ 100.137748][ T5460] bridge_slave_0: entered allmulticast mode
[ 100.143397][ T5460] bridge_slave_0: entered promiscuous mode
[ 100.148673][ T5460] bridge0: port 2(bridge_slave_1) entered blocking state
[ 100.151628][ T5460] bridge0: port 2(bridge_slave_1) entered disabled state
[ 100.156139][ T5460] bridge_slave_1: entered allmulticast mode
[ 100.160018][ T5460] bridge_slave_1: entered promiscuous mode
[ 100.188607][ T5460] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 100.195860][ T5460] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 100.219572][ T5460] team0: Port device team_slave_0 added
[ 100.225431][ T5460] team0: Port device team_slave_1 added
[ 100.282316][ T5460] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 100.285260][ T5460] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 100.298808][ T5460] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 100.329625][ T5460] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 100.338473][ T5460] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 100.350043][ T5460] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 100.464178][ T43] bridge_slave_1: left allmulticast mode
[ 100.466928][ T43] bridge_slave_1: left promiscuous mode
[ 100.470448][ T43] bridge0: port 2(bridge_slave_1) entered disabled state
[ 100.494973][ T43] bridge_slave_0: left allmulticast mode
[ 100.498399][ T43] bridge_slave_0: left promiscuous mode
[ 100.501282][ T43] bridge0: port 1(bridge_slave_0) entered disabled state
[ 101.072556][ T43] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 101.078798][ T43] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 101.098040][ T43] bond0 (unregistering): Released all slaves
[ 101.123509][ T5460] hsr_slave_0: entered promiscuous mode
[ 101.140181][ T5460] hsr_slave_1: entered promiscuous mode
[ 101.160301][ T5460] debugfs: 'hsr0' already exists in 'hsr'
[ 101.170073][ T5460] Cannot create hsr debugfs directory
[ 101.238729][ T43] hsr_slave_0: left promiscuous mode
[ 101.243029][ T43] hsr_slave_1: left promiscuous mode
[ 101.273499][ T43] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 101.278906][ T43] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 101.294631][ T43] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 101.298913][ T43] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 101.319871][ T43] veth1_macvtap: left promiscuous mode
[ 101.334193][ T43] veth0_macvtap: left promiscuous mode
[ 101.337143][ T43] veth1_vlan: left promiscuous mode
[ 101.339534][ T43] veth0_vlan: left promiscuous mode
[ 101.711009][ T43] team0 (unregistering): Port device team_slave_1 removed
[ 101.745184][ T43] team0 (unregistering): Port device team_slave_0 removed
[ 101.974830][ T4705] Bluetooth: hci0: command tx timeout
[ 103.160265][ T5460] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 103.197314][ T5460] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 103.227049][ T5460] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 103.259355][ T5460] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 103.420413][ T5460] 8021q: adding VLAN 0 to HW filter on device bond0
[ 103.465635][ T5460] 8021q: adding VLAN 0 to HW filter on device team0
[ 103.476389][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 103.479454][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 103.519011][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 103.522491][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 103.884962][ T5460] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 103.969321][ T5460] veth0_vlan: entered promiscuous mode
[ 103.985426][ T5460] veth1_vlan: entered promiscuous mode
[ 104.015347][ T5460] veth0_macvtap: entered promiscuous mode
[ 104.021328][ T5460] veth1_macvtap: entered promiscuous mode
[ 104.037769][ T5460] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 104.049241][ T5460] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 104.053120][ T4705] Bluetooth: hci0: command tx timeout
[ 104.065271][ T13] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 104.075588][ T13] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 104.079446][ T13] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 104.092942][ T13] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 104.155087][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.158407][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.190643][ T1037] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 104.196155][ T1037] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 104.482904][ T54] usb 5-1: new high-speed USB device number 2 using dummy_hcd
[ 104.634955][ T54] usb 5-1: config 0 interface 0 altsetting 0 endpoint 0x81 has an invalid bInterval 0, changing to 7
[ 104.640220][ T54] usb 5-1: New USB device found, idVendor=0926, idProduct=3333, bcdDevice= 0.40
[ 104.645507][ T54] usb 5-1: New USB device strings: Mfr=0, Product=0, SerialNumber=0
[ 104.652385][ T54] usb 5-1: config 0 descriptor??
[ 105.071323][ T54] keytouch 0003:0926:3333.0002: fixing up Keytouch IEC report descriptor
[ 105.084181][ T54] input: HID 0926:3333 as /devices/platform/dummy_hcd.0/usb5/5-1/5-1:0.0/0003:0926:3333.0002/input/input5
[ 105.209428][ T54] keytouch 0003:0926:3333.0002: input,hidraw1: USB HID v0.00 Keyboard [HID 0926:3333] on usb-dummy_hcd.0-1/input0
2025/08/03 14:16:25 executed programs: 3
2025/08/03 14:16:32 executed programs: 5
2025/08/03 14:16:38 executed programs: 7
2025/08/03 14:16:44 executed programs: 9
2025/08/03 14:16:50 executed programs: 11
2025/08/03 14:16:56 executed programs: 13
2025/08/03 14:17:02 executed programs: 15
2025/08/03 14:17:08 executed programs: 17
2025/08/03 14:17:14 executed programs: 19
2025/08/03 14:17:20 executed programs: 21
2025/08/03 14:17:26 executed programs: 23
2025/08/03 14:17:32 executed programs: 25
2025/08/03 14:17:38 executed programs: 27
2025/08/03 14:17:44 executed programs: 29
2025/08/03 14:17:50 executed programs: 31
2025/08/03 14:17:56 executed programs: 33
2025/08/03 14:18:02 executed programs: 35
2025/08/03 14:18:08 executed programs: 37
2025/08/03 14:18:14 executed programs: 39
2025/08/03 14:18:20 executed programs: 41
2025/08/03 14:18:26 executed programs: 43
2025/08/03 14:18:32 executed programs: 45
[ 105.293562][ T9]
[ 105.293572][ T9] ======================================================
[ 105.293576][ T9] WARNING: possible circular locking dependency detected
[ 105.293581][ T9] 6.16.0-syzkaller-11241-g186f3edfdd41 #0 Not tainted
[ 105.293587][ T9] ------------------------------------------------------
[ 105.293591][ T9] kworker/0:0/9 is trying to acquire lock:
[ 105.293597][ T9] ffff88801a4c90b8 (&buf->lock){+.+.}-{4:4}, at: tty_buffer_flush+0x74/0x2b0
[ 105.293715][ T9]
[ 105.293715][ T9] but task is already holding lock:
[ 105.293719][ T9] ffffffff8e12e100 (console_lock){+.+.}-{0:0}, at: vc_SAK+0x28/0x220
[ 105.293768][ T9]
[ 105.293768][ T9] which lock already depends on the new lock.
[ 105.293768][ T9]
[ 105.293772][ T9]
[ 105.293772][ T9] the existing dependency chain (in reverse order) is:
[ 105.293776][ T9]
[ 105.293776][ T9] -> #2 (console_lock){+.+.}-{0:0}:
[ 105.293790][ T9] lock_acquire+0x120/0x360
[ 105.293803][ T9] console_lock+0x164/0x1b0
[ 105.293813][ T9] con_flush_chars+0x70/0x280
[ 105.293823][ T9] n_tty_receive_buf_common+0xc8b/0x12f0
[ 105.293837][ T9] tty_port_default_receive_buf+0x6e/0xa0
[ 105.293847][ T9] flush_to_ldisc+0x24a/0x6e0
[ 105.293856][ T9] process_scheduled_works+0xade/0x17b0
[ 105.293869][ T9] worker_thread+0x8a0/0xda0
[ 105.293877][ T9] kthread+0x711/0x8a0
[ 105.293887][ T9] ret_from_fork+0x3f9/0x770
[ 105.293896][ T9] ret_from_fork_asm+0x1a/0x30
[ 105.293908][ T9]
[ 105.293908][ T9] -> #1 (&tty->termios_rwsem){++++}-{4:4}:
[ 105.293924][ T9] lock_acquire+0x120/0x360
[ 105.293936][ T9] down_read+0x46/0x2e0
[ 105.293979][ T9] n_tty_receive_buf_common+0x84/0x12f0
[ 105.293991][ T9] tty_port_default_receive_buf+0x6e/0xa0
[ 105.294000][ T9] flush_to_ldisc+0x24a/0x6e0
[ 105.294009][ T9] process_scheduled_works+0xade/0x17b0
[ 105.294022][ T9] worker_thread+0x8a0/0xda0
[ 105.294031][ T9] kthread+0x711/0x8a0
[ 105.294041][ T9] ret_from_fork+0x3f9/0x770
[ 105.294049][ T9] ret_from_fork_asm+0x1a/0x30
[ 105.294060][ T9]
[ 105.294060][ T9] -> #0 (&buf->lock){+.+.}-{4:4}:
[ 105.294075][ T9] validate_chain+0xb9b/0x2140
[ 105.294084][ T9] __lock_acquire+0xab9/0xd20
[ 105.294096][ T9] lock_acquire+0x120/0x360
[ 105.294107][ T9] __mutex_lock+0x187/0x1360
[ 105.294115][ T9] tty_buffer_flush+0x74/0x2b0
[ 105.294122][ T9] tty_ldisc_flush+0x6b/0xc0
[ 105.294135][ T9] __do_SAK+0xf2/0x6e0
[ 105.294143][ T9] vc_SAK+0x78/0x220
[ 105.294154][ T9] process_scheduled_works+0xade/0x17b0
[ 105.294167][ T9] worker_thread+0x8a0/0xda0
[ 105.294175][ T9] kthread+0x711/0x8a0
[ 105.294185][ T9] ret_from_fork+0x3f9/0x770
[ 105.294193][ T9] ret_from_fork_asm+0x1a/0x30
[ 105.294203][ T9]
[ 105.294203][ T9] other info that might help us debug this:
[ 105.294203][ T9]
[ 105.294205][ T9] Chain exists of:
[ 105.294205][ T9] &buf->lock --> &tty->termios_rwsem --> console_lock
[ 105.294205][ T9]
[ 105.294219][ T9] Possible unsafe locking scenario:
[ 105.294219][ T9]
[ 105.294222][ T9] CPU0 CPU1
[ 105.294225][ T9] ---- ----
[ 105.294228][ T9] lock(console_lock);
[ 105.294235][ T9] lock(&tty->termios_rwsem);
[ 105.294243][ T9] lock(console_lock);
[ 105.294250][ T9] lock(&buf->lock);
[ 105.294257][ T9]
[ 105.294257][ T9] *** DEADLOCK ***
[ 105.294257][ T9]
[ 105.294261][ T9] 4 locks held by kworker/0:0/9:
[ 105.294266][ T9] #0: ffff88801a474d48 ((wq_completion)events){+.+.}-{0:0}, at: process_scheduled_works+0x9b4/0x17b0
[ 105.294295][ T9] #1: ffffc900001b7bc0 ((work_completion)(&vc_cons[currcons].SAK_work)){+.+.}-{0:0}, at: process_scheduled_works+0x9ef/0x17b0
[ 105.294333][ T9] #2: ffffffff8e12e100 (console_lock){+.+.}-{0:0}, at: vc_SAK+0x28/0x220
[ 105.294361][ T9] #3: ffff88804b2bf0a0 (&tty->ldisc_sem){++++}-{0:0}, at: tty_ldisc_flush+0x20/0xc0
[ 105.294389][ T9]
[ 105.294389][ T9] stack backtrace:
[ 105.294395][ T9] CPU: 0 UID: 0 PID: 9 Comm: kworker/0:0 Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 105.294406][ T9] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 105.294413][ T9] Workqueue: events vc_SAK
[ 105.294426][ T9] Call Trace:
[ 105.294431][ T9]
[ 105.294436][ T9] dump_stack_lvl+0x189/0x250
[ 105.294448][ T9] ? __pfx_dump_stack_lvl+0x10/0x10
[ 105.294459][ T9] ? __pfx__printk+0x10/0x10
[ 105.294472][ T9] ? print_lock_name+0xde/0x100
[ 105.294484][ T9] print_circular_bug+0x2ee/0x310
[ 105.294496][ T9] check_noncircular+0x134/0x160
[ 105.294507][ T9] validate_chain+0xb9b/0x2140
[ 105.294521][ T9] __lock_acquire+0xab9/0xd20
[ 105.294534][ T9] ? tty_buffer_flush+0x74/0x2b0
[ 105.294543][ T9] lock_acquire+0x120/0x360
[ 105.294555][ T9] ? tty_buffer_flush+0x74/0x2b0
[ 105.294566][ T9] __mutex_lock+0x187/0x1360
[ 105.294575][ T9] ? tty_buffer_flush+0x74/0x2b0
[ 105.294584][ T9] ? __lock_acquire+0xab9/0xd20
[ 105.294598][ T9] ? tty_buffer_flush+0x74/0x2b0
[ 105.294607][ T9] ? __pfx___mutex_lock+0x10/0x10
[ 105.294615][ T9] ? do_raw_spin_lock+0x121/0x290
[ 105.294627][ T9] ? ldsem_down_read_trylock+0x137/0x1a0
[ 105.294638][ T9] ? tty_ldisc_flush+0x20/0xc0
[ 105.294650][ T9] ? __pfx_ldsem_down_read_trylock+0x10/0x10
[ 105.294662][ T9] tty_buffer_flush+0x74/0x2b0
[ 105.294672][ T9] tty_ldisc_flush+0x6b/0xc0
[ 105.294686][ T9] __do_SAK+0xf2/0x6e0
[ 105.294697][ T9] vc_SAK+0x78/0x220
[ 105.294708][ T9] ? process_scheduled_works+0x9ef/0x17b0
[ 105.294723][ T9] process_scheduled_works+0xade/0x17b0
[ 105.294738][ T9] ? __pfx_process_scheduled_works+0x10/0x10
[ 105.294749][ T9] worker_thread+0x8a0/0xda0
[ 105.294759][ T9] kthread+0x711/0x8a0
[ 105.294770][ T9] ? __pfx_worker_thread+0x10/0x10
[ 105.294778][ T9] ? __pfx_kthread+0x10/0x10
[ 105.294789][ T9] ? _raw_spin_unlock_irq+0x23/0x50
[ 105.294802][ T9] ? lockdep_hardirqs_on+0x9c/0x150
[ 105.294815][ T9] ? __pfx_kthread+0x10/0x10
[ 105.294826][ T9] ret_from_fork+0x3f9/0x770
[ 105.294836][ T9] ? __pfx_ret_from_fork+0x10/0x10
[ 105.294846][ T9] ? __pfx_kthread+0x10/0x10
[ 105.294853][ T9] ret_from_fork_asm+0x1a/0x30
[ 105.294862][ T9]
[ 105.484561][ T5505] usb 5-1: USB disconnect, device number 2
[ 106.132357][ T4705] Bluetooth: hci0: command tx timeout
[ 108.212070][ T4705] Bluetooth: hci0: command tx timeout
[ 119.270373][ T45] Bluetooth: hci1: unexpected cc 0x0c03 length: 249 > 1
[ 119.270613][ T45] Bluetooth: hci1: unexpected cc 0x1003 length: 249 > 9
[ 119.270804][ T45] Bluetooth: hci1: unexpected cc 0x1001 length: 249 > 9
[ 119.271476][ T45] Bluetooth: hci1: unexpected cc 0x0c23 length: 249 > 4
[ 119.272946][ T45] Bluetooth: hci1: unexpected cc 0x0c38 length: 249 > 2
[ 119.483460][ T5511] chnl_net:caif_netlink_parms(): no params data found
[ 119.514462][ T5511] bridge0: port 1(bridge_slave_0) entered blocking state
[ 119.514527][ T5511] bridge0: port 1(bridge_slave_0) entered disabled state
[ 119.514589][ T5511] bridge_slave_0: entered allmulticast mode
[ 119.515044][ T5511] bridge_slave_0: entered promiscuous mode
[ 119.515924][ T5511] bridge0: port 2(bridge_slave_1) entered blocking state
[ 119.515965][ T5511] bridge0: port 2(bridge_slave_1) entered disabled state
[ 119.516029][ T5511] bridge_slave_1: entered allmulticast mode
[ 119.516473][ T5511] bridge_slave_1: entered promiscuous mode
[ 119.527567][ T5511] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 119.529173][ T5511] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 119.539770][ T5511] team0: Port device team_slave_0 added
[ 119.541214][ T5511] team0: Port device team_slave_1 added
[ 119.552354][ T5511] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 119.552369][ T5511] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 119.552381][ T5511] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 119.553163][ T5511] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 119.553172][ T5511] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1560 would solve the problem.
[ 119.553184][ T5511] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 119.570715][ T5511] hsr_slave_0: entered promiscuous mode
[ 119.571116][ T5511] hsr_slave_1: entered promiscuous mode
[ 119.640832][ T5511] netdevsim netdevsim1 netdevsim0: renamed from eth0
[ 119.643864][ T5511] netdevsim netdevsim1 netdevsim1: renamed from eth1
[ 119.646468][ T5511] netdevsim netdevsim1 netdevsim2: renamed from eth2
[ 119.648853][ T5511] netdevsim netdevsim1 netdevsim3: renamed from eth3
[ 119.662559][ T5511] bridge0: port 2(bridge_slave_1) entered blocking state
[ 119.662621][ T5511] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 119.662729][ T5511] bridge0: port 1(bridge_slave_0) entered blocking state
[ 119.662776][ T5511] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 119.694080][ T5511] 8021q: adding VLAN 0 to HW filter on device bond0
[ 119.698433][ T1051] bridge0: port 1(bridge_slave_0) entered disabled state
[ 119.698671][ T1051] bridge0: port 2(bridge_slave_1) entered disabled state
[ 119.702987][ T5511] 8021q: adding VLAN 0 to HW filter on device team0
[ 119.706116][ T13] bridge0: port 1(bridge_slave_0) entered blocking state
[ 119.706156][ T13] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 119.708827][ T13] bridge0: port 2(bridge_slave_1) entered blocking state
[ 119.708871][ T13] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 119.728584][ T5511] hsr0: Slave B (hsr_slave_1) is not up; please bring it up to get a fully working HSR network
[ 119.815990][ T5511] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 119.839211][ T5511] veth0_vlan: entered promiscuous mode
[ 119.843529][ T5511] veth1_vlan: entered promiscuous mode
[ 119.856460][ T5511] veth0_macvtap: entered promiscuous mode
[ 119.858174][ T5511] veth1_macvtap: entered promiscuous mode
[ 119.865060][ T5511] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 119.868709][ T5511] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 119.871544][ T43] netdevsim netdevsim1 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 119.871571][ T43] netdevsim netdevsim1 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 119.871590][ T43] netdevsim netdevsim1 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 119.871606][ T43] netdevsim netdevsim1 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 119.891008][ T5511] ieee80211 phy7: Selected rate control algorithm 'minstrel_ht'
[ 119.905181][ T13] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.905197][ T13] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 119.908231][ T5511] ieee80211 phy8: Selected rate control algorithm 'minstrel_ht'
[ 119.920750][ T1037] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 119.920769][ T1037] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 121.332029][ T4705] Bluetooth: hci1: command tx timeout
[ 123.411881][ T4705] Bluetooth: hci1: command tx timeout
[ 125.492297][ T4705] Bluetooth: hci1: command tx timeout
[ 127.571894][ T4705] Bluetooth: hci1: command tx timeout
[ 138.053973][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[ 138.054012][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[ 199.493207][ T1317] ieee802154 phy0 wpan0: encryption failed: -22
[ 199.493246][ T1317] ieee802154 phy1 wpan1: encryption failed: -22
[ 222.052000][ T45] Bluetooth: hci0: command 0x0406 tx timeout
[ 242.531957][ T4705] Bluetooth: hci1: command 0x0406 tx timeout
[ 251.973999][ T26] INFO: task kworker/0:0:9 blocked for more than 143 seconds.
[ 251.974020][ T26] Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0
[ 251.974026][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 251.974032][ T26] task:kworker/0:0 state:D stack:24264 pid:9 tgid:9 ppid:2 task_flags:0x4208060 flags:0x00004000
[ 251.974065][ T26] Workqueue: events vc_SAK
[ 251.974190][ T26] Call Trace:
[ 251.974195][ T26]
[ 251.974201][ T26] __schedule+0x1798/0x4cc0
[ 251.974285][ T26] ? __pfx__raw_spin_unlock_irqrestore+0x10/0x10
[ 251.974304][ T26] ? __pfx___schedule+0x10/0x10
[ 251.974316][ T26] ? preempt_schedule+0xae/0xc0
[ 251.974331][ T26] ? lock_release+0x4b/0x3e0
[ 251.974346][ T26] schedule+0x165/0x360
[ 251.974360][ T26] schedule_preempt_disabled+0x13/0x30
[ 251.974372][ T26] __mutex_lock+0x7e6/0x1360
[ 251.974382][ T26] ? __mutex_lock+0x5b6/0x1360
[ 251.974392][ T26] ? tty_buffer_flush+0x74/0x2b0
[ 251.974404][ T26] ? __pfx___mutex_lock+0x10/0x10
[ 251.974412][ T26] ? do_raw_spin_lock+0x121/0x290
[ 251.974425][ T26] ? ldsem_down_read_trylock+0x137/0x1a0
[ 251.975640][ T26] ? tty_ldisc_flush+0x20/0xc0
[ 251.975665][ T26] ? __pfx_ldsem_down_read_trylock+0x10/0x10
[ 251.975678][ T26] tty_buffer_flush+0x74/0x2b0
[ 251.975689][ T26] tty_ldisc_flush+0x6b/0xc0
[ 251.975703][ T26] __do_SAK+0xf2/0x6e0
[ 251.975719][ T26] vc_SAK+0x78/0x220
[ 251.975732][ T26] ? process_scheduled_works+0x9ef/0x17b0
[ 251.975748][ T26] process_scheduled_works+0xade/0x17b0
[ 251.975769][ T26] ? __pfx_process_scheduled_works+0x10/0x10
[ 251.975787][ T26] worker_thread+0x8a0/0xda0
[ 251.975803][ T26] kthread+0x711/0x8a0
[ 251.975815][ T26] ? __pfx_worker_thread+0x10/0x10
[ 251.975830][ T26] ? __pfx_kthread+0x10/0x10
[ 251.975841][ T26] ? _raw_spin_unlock_irq+0x23/0x50
[ 251.975855][ T26] ? lockdep_hardirqs_on+0x9c/0x150
[ 251.975868][ T26] ? __pfx_kthread+0x10/0x10
[ 251.975880][ T26] ret_from_fork+0x3f9/0x770
[ 251.975892][ T26] ? __pfx_ret_from_fork+0x10/0x10
[ 251.975903][ T26] ? __pfx_kthread+0x10/0x10
[ 251.975915][ T26] ret_from_fork_asm+0x1a/0x30
[ 251.975931][ T26]
[ 251.975938][ T26] INFO: task kworker/u4:0:12 blocked for more than 143 seconds.
[ 251.975948][ T26] Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0
[ 251.975955][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 251.975960][ T26] task:kworker/u4:0 state:D stack:21720 pid:12 tgid:12 ppid:2 task_flags:0x4208060 flags:0x00004000
[ 251.975993][ T26] Workqueue: events_unbound flush_to_ldisc
[ 251.976004][ T26] Call Trace:
[ 251.976009][ T26]
[ 251.976014][ T26] __schedule+0x1798/0x4cc0
[ 251.976035][ T26] ? __lock_acquire+0xab9/0xd20
[ 251.976049][ T26] ? __pfx___schedule+0x10/0x10
[ 251.976065][ T26] ? schedule+0x91/0x360
[ 251.976078][ T26] schedule+0x165/0x360
[ 251.976091][ T26] schedule_timeout+0x9a/0x270
[ 251.976103][ T26] ? __pfx_schedule_timeout+0x10/0x10
[ 251.976119][ T26] ? _raw_spin_unlock_irq+0x23/0x50
[ 251.976132][ T26] ? lockdep_hardirqs_on+0x9c/0x150
[ 251.976145][ T26] __down_common+0x319/0x6a0
[ 251.976156][ T26] ? __pfx___down_common+0x10/0x10
[ 251.976165][ T26] ? _raw_spin_lock_irqsave+0xb3/0xf0
[ 251.976179][ T26] ? console_unlock+0x21b/0x270
[ 251.976191][ T26] down+0x80/0xd0
[ 251.976201][ T26] console_lock+0x145/0x1b0
[ 251.976212][ T26] do_con_write+0x102/0x5200
[ 251.976234][ T26] ? __pfx_do_con_write+0x10/0x10
[ 251.976246][ T26] ? __lock_acquire+0xab9/0xd20
[ 251.976260][ T26] ? __mutex_trylock_common+0x153/0x260
[ 251.976272][ T26] ? __pfx___mutex_trylock_common+0x10/0x10
[ 251.976282][ T26] ? rcu_is_watching+0x15/0xb0
[ 251.976293][ T26] con_put_char+0x82/0xc0
[ 251.976302][ T26] ? __pfx_con_put_char+0x10/0x10
[ 251.976313][ T26] ? __lock_acquire+0xab9/0xd20
[ 251.976326][ T26] ? __pfx_con_put_char+0x10/0x10
[ 251.976336][ T26] tty_put_char+0xcb/0x160
[ 251.976346][ T26] ? __pfx_tty_put_char+0x10/0x10
[ 251.976356][ T26] ? __pfx___mutex_lock+0x10/0x10
[ 251.976366][ T26] __process_echoes+0x41a/0xa20
[ 251.976381][ T26] n_tty_receive_buf_common+0xc29/0x12f0
[ 251.976402][ T26] tty_port_default_receive_buf+0x6e/0xa0
[ 251.976415][ T26] flush_to_ldisc+0x24a/0x6e0
[ 251.976427][ T26] ? process_scheduled_works+0x9ef/0x17b0
[ 251.976441][ T26] process_scheduled_works+0xade/0x17b0
[ 251.976454][ T26] ? __pfx_process_scheduled_works+0x10/0x10
[ 251.976469][ T26] worker_thread+0x8a0/0xda0
[ 251.976519][ T26] kthread+0x711/0x8a0
[ 251.976534][ T26] ? __pfx_worker_thread+0x10/0x10
[ 251.976543][ T26] ? __pfx_kthread+0x10/0x10
[ 251.976555][ T26] ? _raw_spin_unlock_irq+0x23/0x50
[ 251.976568][ T26] ? lockdep_hardirqs_on+0x9c/0x150
[ 251.976583][ T26] ? __pfx_kthread+0x10/0x10
[ 251.976595][ T26] ret_from_fork+0x3f9/0x770
[ 251.976606][ T26] ? __pfx_ret_from_fork+0x10/0x10
[ 251.976616][ T26] ? __pfx_kthread+0x10/0x10
[ 251.976627][ T26] ret_from_fork_asm+0x1a/0x30
[ 251.976644][ T26]
[ 251.976772][ T26] INFO: task kworker/0:4:5424 blocked for more than 143 seconds.
[ 251.976780][ T26] Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0
[ 251.976784][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 251.976787][ T26] task:kworker/0:4 state:D stack:27696 pid:5424 tgid:5424 ppid:2 task_flags:0x4208060 flags:0x00004000
[ 251.976810][ T26] Workqueue: events console_callback
[ 251.976840][ T26] Call Trace:
[ 251.976844][ T26]
[ 251.976850][ T26] __schedule+0x1798/0x4cc0
[ 251.976867][ T26] ? do_raw_spin_lock+0x121/0x290
[ 251.976880][ T26] ? __pfx_do_raw_spin_lock+0x10/0x10
[ 251.976893][ T26] ? __pfx___schedule+0x10/0x10
[ 251.976907][ T26] ? _raw_spin_lock_irq+0xae/0xf0
[ 251.976918][ T26] ? lock_release+0x4b/0x3e0
[ 251.976931][ T26] ? rcu_is_watching+0x15/0xb0
[ 251.976941][ T26] schedule+0x165/0x360
[ 251.976955][ T26] schedule_timeout+0x9a/0x270
[ 251.976966][ T26] ? __pfx_schedule_timeout+0x10/0x10
[ 251.976979][ T26] ? rcu_is_watching+0x15/0xb0
[ 251.976989][ T26] ? rcu_is_watching+0x15/0xb0
[ 251.977000][ T26] __down_common+0x319/0x6a0
[ 251.977012][ T26] ? __pfx___down_common+0x10/0x10
[ 251.977021][ T26] ? _raw_spin_lock_irqsave+0xb3/0xf0
[ 251.977035][ T26] ? do_raw_spin_lock+0x121/0x290
[ 251.977049][ T26] down+0x80/0xd0
[ 251.977059][ T26] console_lock+0x145/0x1b0
[ 251.977070][ T26] ? process_scheduled_works+0x9ef/0x17b0
[ 251.977087][ T26] console_callback+0x69/0x440
[ 251.977099][ T26] ? __pfx_console_callback+0x10/0x10
[ 251.977110][ T26] ? rcu_is_watching+0x15/0xb0
[ 251.977119][ T26] ? process_scheduled_works+0x9ef/0x17b0
[ 251.977133][ T26] ? process_scheduled_works+0x9ef/0x17b0
[ 251.977148][ T26] process_scheduled_works+0xade/0x17b0
[ 251.977170][ T26] ? __pfx_process_scheduled_works+0x10/0x10
[ 251.977188][ T26] worker_thread+0x8a0/0xda0
[ 251.977202][ T26] kthread+0x711/0x8a0
[ 251.977216][ T26] ? __pfx_worker_thread+0x10/0x10
[ 251.977226][ T26] ? __pfx_kthread+0x10/0x10
[ 251.977239][ T26] ? _raw_spin_unlock_irq+0x23/0x50
[ 251.977253][ T26] ? lockdep_hardirqs_on+0x9c/0x150
[ 251.977264][ T26] ? __pfx_kthread+0x10/0x10
[ 251.977271][ T26] ret_from_fork+0x3f9/0x770
[ 251.977278][ T26] ? __pfx_ret_from_fork+0x10/0x10
[ 251.977286][ T26] ? __pfx_kthread+0x10/0x10
[ 251.977297][ T26] ret_from_fork_asm+0x1a/0x30
[ 251.977312][ T26]
[ 251.977321][ T26] INFO: task syz.0.17:5503 blocked for more than 143 seconds.
[ 251.977328][ T26] Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0
[ 251.977335][ T26] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 251.977340][ T26] task:syz.0.17 state:D stack:26344 pid:5503 tgid:5503 ppid:5460 task_flags:0x400140 flags:0x00004004
[ 251.977371][ T26] Call Trace:
[ 251.977375][ T26]
[ 251.977380][ T26] __schedule+0x1798/0x4cc0
[ 251.977395][ T26] ? is_bpf_text_address+0x292/0x2b0
[ 251.977413][ T26] ? rcu_is_watching+0x15/0xb0
[ 251.977423][ T26] ? __pfx___schedule+0x10/0x10
[ 251.977437][ T26] ? schedule+0x91/0x360
[ 251.977454][ T26] ? rcu_is_watching+0x15/0xb0
[ 251.977465][ T26] ? lock_release+0x4b/0x3e0
[ 251.977482][ T26] schedule+0x165/0x360
[ 251.977498][ T26] schedule_timeout+0x9a/0x270
[ 251.977510][ T26] ? __pfx_schedule_timeout+0x10/0x10
[ 251.977524][ T26] ? rcu_is_watching+0x15/0xb0
[ 251.977533][ T26] ? rcu_is_watching+0x15/0xb0
[ 251.977544][ T26] __ldsem_down_write_nested+0x304/0x730
[ 251.977560][ T26] ? __ldsem_down_write_nested+0x27a/0x730
[ 251.977573][ T26] ? tty_ldisc_release+0x110/0x200
[ 251.977582][ T26] ? __pfx___ldsem_down_write_nested+0x10/0x10
[ 251.977596][ T26] ? __mutex_unlock_slowpath+0x1a1/0x760
[ 251.977608][ T26] ? __pfx___mutex_unlock_slowpath+0x10/0x10
[ 251.977618][ T26] tty_ldisc_release+0x110/0x200
[ 251.977628][ T26] tty_release_struct+0x2a/0xd0
[ 251.977645][ T26] tty_release+0xcb0/0x1640
[ 251.977662][ T26] ? evm_file_release+0x108/0x1e0
[ 251.977676][ T26] ? __pfx_tty_release+0x10/0x10
[ 251.977693][ T26] __fput+0x449/0xa70
[ 251.977713][ T26] task_work_run+0x1d1/0x260
[ 251.977728][ T26] ? __pfx_task_work_run+0x10/0x10
[ 251.977742][ T26] ? __pfx___se_sys_close_range+0x10/0x10
[ 251.977755][ T26] ? rcu_is_watching+0x15/0xb0
[ 251.977767][ T26] ? rcu_is_watching+0x15/0xb0
[ 251.977778][ T26] exit_to_user_mode_loop+0xec/0x110
[ 251.977793][ T26] do_syscall_64+0x2bd/0x3b0
[ 251.977804][ T26] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 251.977815][ T26] ? asm_sysvec_apic_timer_interrupt+0x1a/0x20
[ 251.977836][ T26] ? clear_bhb_loop+0x60/0xb0
[ 251.977848][ T26] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 251.977859][ T26] RIP: 0033:0x7fce7d78eb69
[ 251.977867][ T26] RSP: 002b:00007ffc72cb4b58 EFLAGS: 00000246 ORIG_RAX: 00000000000001b4
[ 251.977876][ T26] RAX: 0000000000000000 RBX: 0000000000019678 RCX: 00007fce7d78eb69
[ 251.977881][ T26] RDX: 0000000000000000 RSI: 000000000000001e RDI: 0000000000000003
[ 251.977886][ T26] RBP: 0000000000000000 R08: 0000000000000001 R09: 0000000672cb4e4f
[ 251.977891][ T26] R10: 00007fce7d600000 R11: 0000000000000246 R12: 00007fce7d9b5fac
[ 251.977899][ T26] R13: 00007fce7d9b5fa0 R14: ffffffffffffffff R15: 0000000000000004
[ 251.977909][ T26]
[ 251.977922][ T26] INFO: lockdep is turned off.
[ 251.977927][ T26] NMI backtrace for cpu 0
[ 251.977936][ T26] CPU: 0 UID: 0 PID: 26 Comm: khungtaskd Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 251.977948][ T26] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 251.977954][ T26] Call Trace:
[ 251.977958][ T26]
[ 251.977962][ T26] dump_stack_lvl+0x189/0x250
[ 251.977975][ T26] ? __pfx_dump_stack_lvl+0x10/0x10
[ 251.977987][ T26] ? __pfx__printk+0x10/0x10
[ 251.978003][ T26] nmi_cpu_backtrace+0x39e/0x3d0
[ 251.978017][ T26] ? __pfx_nmi_cpu_backtrace+0x10/0x10
[ 251.978030][ T26] ? __pfx__printk+0x10/0x10
[ 251.978044][ T26] ? __pfx_nmi_raise_cpu_backtrace+0x10/0x10
[ 251.978061][ T26] nmi_trigger_cpumask_backtrace+0x17a/0x300
[ 251.978074][ T26] watchdog+0xf93/0xfe0
[ 251.978090][ T26] ? watchdog+0x1de/0xfe0
[ 251.978104][ T26] kthread+0x711/0x8a0
[ 251.978116][ T26] ? __pfx_watchdog+0x10/0x10
[ 251.978127][ T26] ? __pfx_kthread+0x10/0x10
[ 251.978138][ T26] ? _raw_spin_unlock_irq+0x23/0x50
[ 251.978150][ T26] ? lockdep_hardirqs_on+0x9c/0x150
[ 251.978163][ T26] ? __pfx_kthread+0x10/0x10
[ 251.978176][ T26] ret_from_fork+0x3f9/0x770
[ 251.978186][ T26] ? __pfx_ret_from_fork+0x10/0x10
[ 251.978197][ T26] ? __pfx_kthread+0x10/0x10
[ 251.978208][ T26] ret_from_fork_asm+0x1a/0x30
[ 251.978223][ T26]
[ 251.978230][ T26] Kernel panic - not syncing: hung_task: blocked tasks
[ 251.978238][ T26] CPU: 0 UID: 0 PID: 26 Comm: khungtaskd Not tainted 6.16.0-syzkaller-11241-g186f3edfdd41 #0 PREEMPT(full)
[ 251.978249][ T26] Hardware name: QEMU Standard PC (Q35 + ICH9, 2009), BIOS 1.16.3-debian-1.16.3-2~bpo12+1 04/01/2014
[ 251.978254][ T26] Call Trace:
[ 251.978259][ T26]
[ 251.978263][ T26] dump_stack_lvl+0x99/0x250
[ 251.978275][ T26] ? __asan_memcpy+0x40/0x70
[ 251.978285][ T26] ? __pfx_dump_stack_lvl+0x10/0x10
[ 251.978296][ T26] ? __pfx__printk+0x10/0x10
[ 251.978312][ T26] vpanic+0x27a/0x730
[ 251.978325][ T26] ? __pfx_vpanic+0x10/0x10
[ 251.978335][ T26] ? rcu_is_watching+0x15/0xb0
[ 251.978346][ T26] ? nmi_cpu_backtrace+0x386/0x3d0
[ 251.978360][ T26] panic+0xb9/0xc0
[ 251.978371][ T26] ? __pfx_panic+0x10/0x10
[ 251.978383][ T26] ? irq_work_queue+0xc3/0x140
[ 251.978398][ T26] ? nmi_trigger_cpumask_backtrace+0x234/0x300
[ 251.978411][ T26] watchdog+0xfd2/0xfe0
[ 251.978426][ T26] ? watchdog+0x1de/0xfe0
[ 251.978440][ T26] kthread+0x711/0x8a0
[ 251.978453][ T26] ? __pfx_watchdog+0x10/0x10
[ 251.978466][ T26] ? __pfx_kthread+0x10/0x10
[ 251.978478][ T26] ? _raw_spin_unlock_irq+0x23/0x50
[ 251.978491][ T26] ? lockdep_hardirqs_on+0x9c/0x150
[ 251.978505][ T26] ? __pfx_kthread+0x10/0x10
[ 251.978516][ T26] ret_from_fork+0x3f9/0x770
[ 251.978527][ T26] ? __pfx_ret_from_fork+0x10/0x10
[ 251.978538][ T26] ? __pfx_kthread+0x10/0x10
[ 251.978549][ T26] ret_from_fork_asm+0x1a/0x30
[ 251.978565][ T26]
[ 251.978945][ T26] Kernel Offset: disabled
VM DIAGNOSIS:
14:18:38 Registers:
info registers vcpu 0
CPU#0
RAX=0000000000000031 RBX=0000000000000031 RCX=0000000000000000 RDX=00000000000003f8
RSI=0000000000000000 RDI=0000000000000020 RBP=00000000000003f8 RSP=ffffc900004d7730
R8 =ffff888033cd0237 R9 =1ffff1100679a046 R10=dffffc0000000000 R11=ffffffff854ec100
R12=dffffc0000000000 R13=ffffffff99af690d R14=ffffffff99dfb840 R15=0000000000000000
RIP=ffffffff854ec17c RFL=00000002 [-------] CPL=0 II=0 A20=1 SMM=0 HLT=0
ES =0000 0000000000000000 ffffffff 00c00000
CS =0010 0000000000000000 ffffffff 00a09b00 DPL=0 CS64 [-RA]
SS =0018 0000000000000000 ffffffff 00c09300 DPL=0 DS [-WA]
DS =0000 0000000000000000 ffffffff 00c00000
FS =0000 0000000000000000 ffffffff 00c00000
GS =0000 ffff88808d21f000 ffffffff 00c00000
LDT=0000 0000000000000000 ffffffff 00c00000
TR =0040 fffffe0000003000 00004087 00008b00 DPL=0 TSS64-busy
GDT= fffffe0000001000 0000007f
IDT= fffffe0000000000 00000fff
CR0=80050033 CR2=0000556d9622a168 CR3=000000004665c000 CR4=00352ef0
DR0=0000000000000000 DR1=0000000000000000 DR2=0000000000000000 DR3=0000000000000000
DR6=00000000ffff0ff0 DR7=0000000000000400
EFER=0000000000000d01
FCW=037f FSW=0000 [ST=0] FTW=00 MXCSR=00001f80
FPR0=0000000000000000 0000 FPR1=0000000000000000 0000
FPR2=0000000000000000 0000 FPR3=0000000000000000 0000
FPR4=0000000000000000 0000 FPR5=0000000000000000 0000
FPR6=0000000000000000 0000 FPR7=0000000000000000 0000
Opmask00=0000000080040001 Opmask01=0000000000000fff Opmask02=00000000ffffffef Opmask03=0000000000000000
Opmask04=0000000000000000 Opmask05=0000000000000000 Opmask06=0000000000000000 Opmask07=0000000000000000
ZMM00=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00000000a60ce07b 00000000cec3662e
ZMM01=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 140fb364788e2ce4
ZMM02=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM03=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007fff13163a36 00007fff13163a3c
ZMM04=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f01d2c12e0a
ZMM05=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f01d2c12e17
ZMM06=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f01d2c12e11
ZMM07=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f01d2c12e25
ZMM08=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f01d2c12eab
ZMM09=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 00007f01d2c12f89
ZMM10=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM11=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM12=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM13=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM14=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM15=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM16=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM17=0000000000000000 0000000000000000 0000000000000000 0000000000000000 2525252525252525 2525252525252525 2525252525252525 2525252525252525
ZMM18=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0063696e61703d73 726f727265006f72 2d746e756f6d6572 3d73726f72726500
ZMM19=0000000000000000 0000000000000000 0000000000000000 0000000000000000 00464c4b44551856 574a575740004a57 08514b504a484057 1856574a57574000
ZMM20=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM21=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM22=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM23=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM24=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM25=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM26=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM27=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM28=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM29=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM30=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000
ZMM31=0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000 0000000000000000