Warning: Permanently added '10.128.1.44' (ED25519) to the list of known hosts.
2025/12/23 16:43:15 parsed 1 programs
[ 90.862294][ T5835] cgroup: Unknown subsys name 'net'
[ 90.978660][ T5835] cgroup: Unknown subsys name 'cpuset'
[ 90.988996][ T5835] cgroup: Unknown subsys name 'rlimit'
Setting up swapspace version 1, size = 127995904 bytes
[ 92.721184][ T5835] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 95.809250][ T5848] soft_limit_in_bytes is deprecated and will be removed. Please report your usecase to linux-mm@kvack.org if you depend on this functionality.
[ 96.555971][ T5859] chnl_net:caif_netlink_parms(): no params data found
[ 96.643551][ T5859] bridge0: port 1(bridge_slave_0) entered blocking state
[ 96.651461][ T5859] bridge0: port 1(bridge_slave_0) entered disabled state
[ 96.658919][ T5859] bridge_slave_0: entered allmulticast mode
[ 96.666483][ T5859] bridge_slave_0: entered promiscuous mode
[ 96.676099][ T5859] bridge0: port 2(bridge_slave_1) entered blocking state
[ 96.683474][ T5859] bridge0: port 2(bridge_slave_1) entered disabled state
[ 96.691730][ T5859] bridge_slave_1: entered allmulticast mode
[ 96.699208][ T5859] bridge_slave_1: entered promiscuous mode
[ 96.734657][ T5859] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 96.747304][ T5859] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 96.782460][ T5859] team0: Port device team_slave_0 added
[ 96.791509][ T5859] team0: Port device team_slave_1 added
[ 96.824691][ T5859] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 96.831673][ T5859] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 96.858456][ T5859] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 96.871614][ T5859] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 96.878660][ T5859] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 96.904783][ T5859] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 96.960510][ T5859] hsr_slave_0: entered promiscuous mode
[ 96.967914][ T5859] hsr_slave_1: entered promiscuous mode
[ 97.157789][ T5859] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 97.171517][ T5859] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 97.182649][ T5859] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 97.193778][ T5859] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 97.216289][ T795] cfg80211: failed to load regulatory.db
[ 97.296161][ T5859] 8021q: adding VLAN 0 to HW filter on device bond0
[ 97.321350][ T5859] 8021q: adding VLAN 0 to HW filter on device team0
[ 97.334938][ T3040] bridge0: port 1(bridge_slave_0) entered blocking state
[ 97.342172][ T3040] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 97.359896][ T3040] bridge0: port 2(bridge_slave_1) entered blocking state
[ 97.367098][ T3040] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 97.565699][ T5859] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 97.628540][ T5859] veth0_vlan: entered promiscuous mode
[ 97.641212][ T5859] veth1_vlan: entered promiscuous mode
[ 97.675611][ T5859] veth0_macvtap: entered promiscuous mode
[ 97.686391][ T5859] veth1_macvtap: entered promiscuous mode
[ 97.709639][ T5859] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 97.725489][ T5859] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 97.742987][ T63] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.753513][ T63] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.767093][ T63] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.778015][ T63] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 97.894746][ T5859] syz-executor (5859) used greatest stack depth: 18056 bytes left
[ 97.948750][ T63] netdevsim netdevsim0 netdevsim3 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.027157][ T63] netdevsim netdevsim0 netdevsim2 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.080352][ T63] netdevsim netdevsim0 netdevsim1 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.145058][ T63] netdevsim netdevsim0 netdevsim0 (unregistering): unset [1, 0] type 2 family 0 port 6081 - 0
[ 98.971022][ T3076] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 98.980140][ T3076] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 99.023664][ T3076] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 99.032956][ T3076] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 99.652700][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 99.663056][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 99.671374][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 99.680620][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 99.689358][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 100.701178][ T63] bridge_slave_1: left allmulticast mode
[ 100.707483][ T63] bridge_slave_1: left promiscuous mode
[ 100.713822][ T63] bridge0: port 2(bridge_slave_1) entered disabled state
[ 100.726939][ T63] bridge_slave_0: left allmulticast mode
[ 100.732962][ T63] bridge_slave_0: left promiscuous mode
[ 100.739010][ T63] bridge0: port 1(bridge_slave_0) entered disabled state
[ 101.044068][ T63] bond0 (unregistering): (slave bond_slave_0): Releasing backup interface
[ 101.058189][ T63] bond0 (unregistering): (slave bond_slave_1): Releasing backup interface
[ 101.068475][ T63] bond0 (unregistering): Released all slaves
[ 101.210256][ T63] hsr_slave_0: left promiscuous mode
[ 101.218227][ T63] hsr_slave_1: left promiscuous mode
[ 101.237784][ T63] batman_adv: batadv0: Interface deactivated: batadv_slave_0
[ 101.254511][ T63] batman_adv: batadv0: Removing interface: batadv_slave_0
[ 101.273609][ T63] batman_adv: batadv0: Interface deactivated: batadv_slave_1
[ 101.284495][ T63] batman_adv: batadv0: Removing interface: batadv_slave_1
[ 101.334770][ T63] veth1_macvtap: left promiscuous mode
[ 101.340750][ T63] veth0_macvtap: left promiscuous mode
[ 101.370539][ T63] veth1_vlan: left promiscuous mode
[ 101.376825][ T63] veth0_vlan: left promiscuous mode
2025/12/23 16:43:30 executed programs: 0
[ 101.981852][ T52] Bluetooth: hci0: unexpected cc 0x0c03 length: 249 > 1
[ 101.995196][ T52] Bluetooth: hci0: unexpected cc 0x1003 length: 249 > 9
[ 102.003686][ T52] Bluetooth: hci0: unexpected cc 0x1001 length: 249 > 9
[ 102.015084][ T52] Bluetooth: hci0: unexpected cc 0x0c23 length: 249 > 4
[ 102.023538][ T52] Bluetooth: hci0: unexpected cc 0x0c38 length: 249 > 2
[ 102.168145][ T63] team0 (unregistering): Port device team_slave_1 removed
[ 102.199538][ T63] team0 (unregistering): Port device team_slave_0 removed
[ 102.758561][ T5961] chnl_net:caif_netlink_parms(): no params data found
[ 102.947067][ T5961] bridge0: port 1(bridge_slave_0) entered blocking state
[ 102.954355][ T5961] bridge0: port 1(bridge_slave_0) entered disabled state
[ 102.961658][ T5961] bridge_slave_0: entered allmulticast mode
[ 102.969866][ T5961] bridge_slave_0: entered promiscuous mode
[ 102.980505][ T5961] bridge0: port 2(bridge_slave_1) entered blocking state
[ 102.990153][ T5961] bridge0: port 2(bridge_slave_1) entered disabled state
[ 102.997567][ T5961] bridge_slave_1: entered allmulticast mode
[ 103.006105][ T5961] bridge_slave_1: entered promiscuous mode
[ 103.061935][ T5961] bond0: (slave bond_slave_0): Enslaving as an active interface with an up link
[ 103.535004][ T5961] bond0: (slave bond_slave_1): Enslaving as an active interface with an up link
[ 103.598705][ T5961] team0: Port device team_slave_0 added
[ 103.610145][ T5961] team0: Port device team_slave_1 added
[ 103.682389][ T5961] batman_adv: batadv0: Adding interface: batadv_slave_0
[ 103.716949][ T5961] batman_adv: batadv0: The MTU of interface batadv_slave_0 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 103.743972][ T5961] batman_adv: batadv0: Not using interface batadv_slave_0 (retrying later): interface not active
[ 103.757650][ T5961] batman_adv: batadv0: Adding interface: batadv_slave_1
[ 103.764682][ T5961] batman_adv: batadv0: The MTU of interface batadv_slave_1 is too small (1500) to handle the transport of batman-adv packets. Packets going over this interface will be fragmented on layer2 which could impact the performance. Setting the MTU to 1532 would solve the problem.
[ 103.792442][ T5961] batman_adv: batadv0: Not using interface batadv_slave_1 (retrying later): interface not active
[ 103.887322][ T5961] hsr_slave_0: entered promiscuous mode
[ 103.894266][ T5961] hsr_slave_1: entered promiscuous mode
[ 104.095332][ T52] Bluetooth: hci0: command tx timeout
[ 104.830155][ T5961] netdevsim netdevsim0 netdevsim0: renamed from eth0
[ 104.861117][ T5961] netdevsim netdevsim0 netdevsim1: renamed from eth1
[ 104.872964][ T5961] netdevsim netdevsim0 netdevsim2: renamed from eth2
[ 104.904565][ T5961] netdevsim netdevsim0 netdevsim3: renamed from eth3
[ 105.131996][ T5961] 8021q: adding VLAN 0 to HW filter on device bond0
[ 105.183371][ T5961] 8021q: adding VLAN 0 to HW filter on device team0
[ 105.199852][ T63] bridge0: port 1(bridge_slave_0) entered blocking state
[ 105.207130][ T63] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 105.227758][ T63] bridge0: port 2(bridge_slave_1) entered blocking state
[ 105.235018][ T63] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 105.532132][ T5961] 8021q: adding VLAN 0 to HW filter on device batadv0
[ 105.610821][ T5961] veth0_vlan: entered promiscuous mode
[ 105.627695][ T5961] veth1_vlan: entered promiscuous mode
[ 105.688755][ T5961] veth0_macvtap: entered promiscuous mode
[ 105.701526][ T5961] veth1_macvtap: entered promiscuous mode
[ 105.726290][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_0
[ 105.744153][ T5961] batman_adv: batadv0: Interface activated: batadv_slave_1
[ 105.775486][ T63] netdevsim netdevsim0 netdevsim0: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.784292][ T63] netdevsim netdevsim0 netdevsim1: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.800150][ T60] netdevsim netdevsim0 netdevsim2: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.810951][ T60] netdevsim netdevsim0 netdevsim3: set [1, 0] type 2 family 0 port 6081 - 0
[ 105.899140][ T3005] wlan0: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.914730][ T3005] wlan0: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 105.960043][ T60] wlan1: Created IBSS using preconfigured BSSID 50:50:50:50:50:50
[ 105.969279][ T60] wlan1: Creating new IBSS network, BSSID 50:50:50:50:50:50
[ 106.174921][ T52] Bluetooth: hci0: command tx timeout
[ 108.255056][ T52] Bluetooth: hci0: command tx timeout
[ 109.032640][ T6036] ------------[ cut here ]------------
[ 109.033236][ T6036]
[ 109.033244][ T6036] ======================================================
[ 109.033249][ T6036] WARNING: possible circular locking dependency detected
[ 109.033261][ T6036] syzkaller #0 Not tainted
[ 109.033268][ T6036] ------------------------------------------------------
[ 109.033273][ T6036] syz.0.17/6036 is trying to acquire lock:
[ 109.033280][ T6036] ffffffff8e133180 (console_owner){....}-{0:0}, at: console_flush_all+0x131/0xb60
[ 109.033323][ T6036]
[ 109.033323][ T6036] but task is already holding lock:
[ 109.033327][ T6036] ffff8880b863ab18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 109.033358][ T6036]
[ 109.033358][ T6036] which lock already depends on the new lock.
[ 109.033358][ T6036]
[ 109.033362][ T6036]
[ 109.033362][ T6036] the existing dependency chain (in reverse order) is:
[ 109.033368][ T6036]
[ 109.033368][ T6036] -> #4 (&rq->__lock){-.-.}-{2:2}:
[ 109.033385][ T6036] _raw_spin_lock_nested+0x32/0x50
[ 109.033405][ T6036] raw_spin_rq_lock_nested+0x2a/0x140
[ 109.033418][ T6036] task_rq_lock+0xbc/0x470
[ 109.033430][ T6036] cgroup_move_task+0x92/0x2a0
[ 109.033446][ T6036] css_set_move_task+0x658/0x9e0
[ 109.033460][ T6036] cgroup_post_fork+0x1ef/0x7a0
[ 109.033473][ T6036] copy_process+0x3614/0x3950
[ 109.033486][ T6036] kernel_clone+0x21e/0x820
[ 109.033500][ T6036] user_mode_thread+0xdd/0x140
[ 109.033515][ T6036] rest_init+0x23/0x300
[ 109.033526][ T6036] start_kernel+0x3ac/0x400
[ 109.033540][ T6036] x86_64_start_reservations+0x24/0x30
[ 109.033559][ T6036] x86_64_start_kernel+0x143/0x1c0
[ 109.033577][ T6036] common_startup_64+0x13e/0x147
[ 109.033620][ T6036]
[ 109.033620][ T6036] -> #3 (&p->pi_lock){-.-.}-{2:2}:
[ 109.033640][ T6036] _raw_spin_lock_irqsave+0xa7/0xf0
[ 109.033657][ T6036] try_to_wake_up+0x67/0x12b0
[ 109.033677][ T6036] __wake_up_common_lock+0x137/0x1f0
[ 109.033698][ T6036] tty_port_default_wakeup+0xfb/0x170
[ 109.033719][ T6036] serial8250_tx_chars+0x72e/0x970
[ 109.033734][ T6036] serial8250_handle_irq+0x633/0xbb0
[ 109.033750][ T6036] serial8250_default_handle_irq+0xbf/0x200
[ 109.033769][ T6036] serial8250_interrupt+0x8d/0x180
[ 109.033791][ T6036] __handle_irq_event_percpu+0x285/0xa60
[ 109.033814][ T6036] handle_irq_event+0x8b/0x1e0
[ 109.033834][ T6036] handle_edge_irq+0x23b/0xa10
[ 109.033852][ T6036] __common_interrupt+0x141/0x1f0
[ 109.033874][ T6036] common_interrupt+0xb6/0xe0
[ 109.033888][ T6036] asm_common_interrupt+0x26/0x40
[ 109.033902][ T6036] finish_task_switch+0x242/0x940
[ 109.033923][ T6036] __schedule+0x1516/0x5070
[ 109.033940][ T6036] schedule+0x165/0x360
[ 109.033956][ T6036] worker_thread+0xbde/0xee0
[ 109.033979][ T6036] kthread+0x711/0x8a0
[ 109.033997][ T6036] ret_from_fork+0x599/0xb30
[ 109.034009][ T6036] ret_from_fork_asm+0x1a/0x30
[ 109.034030][ T6036]
[ 109.034030][ T6036] -> #2 (&tty->write_wait){-.-.}-{3:3}:
[ 109.034050][ T6036] _raw_spin_lock_irqsave+0xa7/0xf0
[ 109.034067][ T6036] __wake_up_common_lock+0x2f/0x1f0
[ 109.034088][ T6036] tty_port_default_wakeup+0xfb/0x170
[ 109.034106][ T6036] serial8250_tx_chars+0x72e/0x970
[ 109.034120][ T6036] serial8250_handle_irq+0x633/0xbb0
[ 109.034135][ T6036] serial8250_default_handle_irq+0xbf/0x200
[ 109.034154][ T6036] serial8250_interrupt+0x8d/0x180
[ 109.034176][ T6036] __handle_irq_event_percpu+0x285/0xa60
[ 109.034198][ T6036] handle_irq_event+0x8b/0x1e0
[ 109.034218][ T6036] handle_edge_irq+0x23b/0xa10
[ 109.034236][ T6036] __common_interrupt+0x141/0x1f0
[ 109.034257][ T6036] common_interrupt+0xb6/0xe0
[ 109.034271][ T6036] asm_common_interrupt+0x26/0x40
[ 109.034284][ T6036] pv_native_safe_halt+0x13/0x20
[ 109.034303][ T6036] default_idle+0x13/0x20
[ 109.034314][ T6036] default_idle_call+0x73/0xb0
[ 109.034326][ T6036] do_idle+0x1ea/0x520
[ 109.034341][ T6036] cpu_startup_entry+0x44/0x60
[ 109.034357][ T6036] rest_init+0x2de/0x300
[ 109.034376][ T6036] start_kernel+0x3ac/0x400
[ 109.034391][ T6036] x86_64_start_reservations+0x24/0x30
[ 109.034412][ T6036] x86_64_start_kernel+0x143/0x1c0
[ 109.034432][ T6036] common_startup_64+0x13e/0x147
[ 109.034450][ T6036]
[ 109.034450][ T6036] -> #1 (&port_lock_key){-.-.}-{3:3}:
[ 109.034470][ T6036] _raw_spin_lock_irqsave+0xa7/0xf0
[ 109.034487][ T6036] serial8250_console_write+0x17e/0x1ba0
[ 109.034504][ T6036] console_flush_all+0x745/0xb60
[ 109.034524][ T6036] console_unlock+0xbb/0x190
[ 109.034541][ T6036] vprintk_emit+0x4f8/0x5f0
[ 109.034559][ T6036] _printk+0xcf/0x120
[ 109.034580][ T6036] register_console+0xa8b/0xf90
[ 109.034600][ T6036] univ8250_console_init+0x3a/0x70
[ 109.034622][ T6036] console_init+0xfc/0x3f0
[ 109.034641][ T6036] start_kernel+0x252/0x400
[ 109.034656][ T6036] x86_64_start_reservations+0x24/0x30
[ 109.034676][ T6036] x86_64_start_kernel+0x143/0x1c0
[ 109.034697][ T6036] common_startup_64+0x13e/0x147
[ 109.034716][ T6036]
[ 109.034716][ T6036] -> #0 (console_owner){....}-{0:0}:
[ 109.034735][ T6036] __lock_acquire+0x15a6/0x2cf0
[ 109.034750][ T6036] lock_acquire+0x117/0x340
[ 109.034763][ T6036] console_flush_all+0x6ee/0xb60
[ 109.034783][ T6036] console_unlock+0xbb/0x190
[ 109.034800][ T6036] vprintk_emit+0x4f8/0x5f0
[ 109.034817][ T6036] _printk+0xcf/0x120
[ 109.034837][ T6036] __report_bug+0x305/0x500
[ 109.034855][ T6036] report_bug+0x16a/0x220
[ 109.034872][ T6036] handle_bug+0x98/0x200
[ 109.034883][ T6036] exc_invalid_op+0x1a/0x50
[ 109.034895][ T6036] asm_exc_invalid_op+0x1a/0x20
[ 109.034908][ T6036] sched_change_end+0x4f6/0x640
[ 109.034926][ T6036] rt_mutex_setprio+0x488/0xb70
[ 109.034938][ T6036] remove_waiter+0x7f5/0xaf0
[ 109.034952][ T6036] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 109.034972][ T6036] futex_lock_pi+0x530/0xa90
[ 109.034990][ T6036] do_futex+0x292/0x420
[ 109.035004][ T6036] __se_sys_futex+0x36f/0x400
[ 109.035020][ T6036] do_syscall_64+0xfa/0xf80
[ 109.035040][ T6036] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.035054][ T6036]
[ 109.035054][ T6036] other info that might help us debug this:
[ 109.035054][ T6036]
[ 109.035059][ T6036] Chain exists of:
[ 109.035059][ T6036] console_owner --> &p->pi_lock --> &rq->__lock
[ 109.035059][ T6036]
[ 109.035082][ T6036] Possible unsafe locking scenario:
[ 109.035082][ T6036]
[ 109.035086][ T6036] CPU0 CPU1
[ 109.035091][ T6036] ---- ----
[ 109.035095][ T6036] lock(&rq->__lock);
[ 109.035105][ T6036] lock(&p->pi_lock);
[ 109.035115][ T6036] lock(&rq->__lock);
[ 109.035126][ T6036] lock(console_owner);
[ 109.035135][ T6036]
[ 109.035135][ T6036] *** DEADLOCK ***
[ 109.035135][ T6036]
[ 109.035139][ T6036] 5 locks held by syz.0.17/6036:
[ 109.035148][ T6036] #0: ffff88807b50bd28 (&pi_futex_key){....}-{2:2}, at: rt_mutex_cleanup_proxy_lock+0x23/0x100
[ 109.035184][ T6036] #1: ffff88802e33a8e8 (&p->pi_lock){-.-.}-{2:2}, at: remove_waiter+0x286/0xaf0
[ 109.035219][ T6036] #2: ffff8880b863ab18 (&rq->__lock){-.-.}-{2:2}, at: raw_spin_rq_lock_nested+0x2a/0x140
[ 109.035254][ T6036] #3: ffffffff8e1331e0 (console_lock){+.+.}-{0:0}, at: _printk+0xcf/0x120
[ 109.035296][ T6036] #4: ffffffff8e01aa98 (console_srcu){....}-{0:0}, at: console_flush_all+0x131/0xb60
[ 109.035337][ T6036]
[ 109.035337][ T6036] stack backtrace:
[ 109.035356][ T6036] CPU: 1 UID: 0 PID: 6036 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 109.035373][ T6036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 109.035389][ T6036] Call Trace:
[ 109.035395][ T6036]
[ 109.035401][ T6036] dump_stack_lvl+0x189/0x250
[ 109.035422][ T6036] ? __pfx_dump_stack_lvl+0x10/0x10
[ 109.035441][ T6036] ? __pfx__printk+0x10/0x10
[ 109.035464][ T6036] ? print_lock_name+0xde/0x100
[ 109.035488][ T6036] print_circular_bug+0x2e2/0x300
[ 109.035510][ T6036] check_noncircular+0x12e/0x150
[ 109.035532][ T6036] __lock_acquire+0x15a6/0x2cf0
[ 109.035564][ T6036] ? console_flush_all+0x131/0xb60
[ 109.035583][ T6036] lock_acquire+0x117/0x340
[ 109.035596][ T6036] ? console_flush_all+0x131/0xb60
[ 109.035617][ T6036] ? do_raw_spin_unlock+0x122/0x240
[ 109.035637][ T6036] ? console_flush_all+0x131/0xb60
[ 109.035656][ T6036] console_flush_all+0x6ee/0xb60
[ 109.035674][ T6036] ? console_flush_all+0x131/0xb60
[ 109.035694][ T6036] ? console_flush_all+0x131/0xb60
[ 109.035715][ T6036] ? __pfx_console_flush_all+0x10/0x10
[ 109.035738][ T6036] ? is_printk_cpu_sync_owner+0x32/0x40
[ 109.035761][ T6036] console_unlock+0xbb/0x190
[ 109.035777][ T6036] ? __pfx___down_trylock_console_sem+0x10/0x10
[ 109.035797][ T6036] ? __pfx_console_unlock+0x10/0x10
[ 109.035817][ T6036] vprintk_emit+0x4f8/0x5f0
[ 109.035835][ T6036] ? __pfx_vprintk_emit+0x10/0x10
[ 109.035853][ T6036] ? __lock_acquire+0x6b6/0x2cf0
[ 109.035867][ T6036] ? __lock_acquire+0x6b6/0x2cf0
[ 109.035884][ T6036] _printk+0xcf/0x120
[ 109.035905][ T6036] ? __pfx__printk+0x10/0x10
[ 109.035926][ T6036] ? find_bug+0xa5/0x370
[ 109.035941][ T6036] ? sched_change_end+0x4f6/0x640
[ 109.035964][ T6036] ? sched_change_end+0x4f6/0x640
[ 109.035981][ T6036] __report_bug+0x305/0x500
[ 109.035998][ T6036] ? sched_change_end+0x4f6/0x640
[ 109.036017][ T6036] ? __pfx___report_bug+0x10/0x10
[ 109.036035][ T6036] ? rcu_read_lock_sched_held+0x89/0x100
[ 109.036053][ T6036] ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[ 109.036074][ T6036] ? sched_change_end+0x4f6/0x640
[ 109.036091][ T6036] report_bug+0x16a/0x220
[ 109.036108][ T6036] ? sched_change_end+0x4f6/0x640
[ 109.036124][ T6036] ? sched_change_end+0x4f8/0x640
[ 109.036141][ T6036] handle_bug+0x98/0x200
[ 109.036153][ T6036] exc_invalid_op+0x1a/0x50
[ 109.036164][ T6036] asm_exc_invalid_op+0x1a/0x20
[ 109.036177][ T6036] RIP: 0010:sched_change_end+0x4f6/0x640
[ 109.036196][ T6036] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 109.036207][ T6036] RSP: 0018:ffffc90003477850 EFLAGS: 00010046
[ 109.036219][ T6036] RAX: 1ffff11005c673d0 RBX: ffffffff8dba8ed0 RCX: ffffffff8192e20f
[ 109.036230][ T6036] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802e339e80
[ 109.036239][ T6036] RBP: ffff88802e33a128 R08: ffff88802e339e87 R09: 1ffff11005c673d0
[ 109.036249][ T6036] R10: dffffc0000000000 R11: ffffed1005c673d1 R12: dffffc0000000000
[ 109.036259][ T6036] R13: ffff88802e339e80 R14: ffff8880b863ab00 R15: ffff88802e339e80
[ 109.036272][ T6036] ? sched_change_end+0x4af/0x640
[ 109.036295][ T6036] rt_mutex_setprio+0x488/0xb70
[ 109.036312][ T6036] remove_waiter+0x7f5/0xaf0
[ 109.036327][ T6036] ? lockdep_hardirqs_on+0x98/0x140
[ 109.036347][ T6036] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 109.036363][ T6036] futex_lock_pi+0x530/0xa90
[ 109.036384][ T6036] ? __pfx_futex_lock_pi+0x10/0x10
[ 109.036408][ T6036] ? futex_hash+0x40/0x2d0
[ 109.036419][ T6036] ? futex_hash+0x2ad/0x2d0
[ 109.036433][ T6036] ? __pfx_futex_wake_mark+0x10/0x10
[ 109.036453][ T6036] ? __pfx_futex_wake+0x10/0x10
[ 109.036476][ T6036] do_futex+0x292/0x420
[ 109.036493][ T6036] ? __pfx_do_futex+0x10/0x10
[ 109.036511][ T6036] __se_sys_futex+0x36f/0x400
[ 109.036528][ T6036] ? __pfx___se_sys_futex+0x10/0x10
[ 109.036546][ T6036] ? __x64_sys_futex+0x21/0xf0
[ 109.036562][ T6036] do_syscall_64+0xfa/0xf80
[ 109.036581][ T6036] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.036594][ T6036] ? clear_bhb_loop+0x60/0xb0
[ 109.036610][ T6036] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 109.036623][ T6036] RIP: 0033:0x7f4dd2b8f749
[ 109.036639][ T6036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 109.036650][ T6036] RSP: 002b:00007ffd006f0908 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 109.036663][ T6036] RAX: ffffffffffffffda RBX: 00007f4dd2de5fa0 RCX: 00007f4dd2b8f749
[ 109.036673][ T6036] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 0000200000000180
[ 109.036682][ T6036] RBP: 00007f4dd2c13f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 109.036691][ T6036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 109.036699][ T6036] R13: 00007f4dd2de5fa0 R14: 00007f4dd2de5fa0 R15: 0000000000000006
[ 109.036714][ T6036]
[ 110.251638][ T6036] WARNING: kernel/sched/core.c:10852 at sched_change_end+0x4f6/0x640, CPU#1: syz.0.17/6036
[ 110.261651][ T6036] Modules linked in:
[ 110.265563][ T6036] CPU: 1 UID: 0 PID: 6036 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 110.274698][ T6036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 110.284781][ T6036] RIP: 0010:sched_change_end+0x4f6/0x640
[ 110.290436][ T6036] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 110.310042][ T6036] RSP: 0018:ffffc90003477850 EFLAGS: 00010046
[ 110.316195][ T6036] RAX: 1ffff11005c673d0 RBX: ffffffff8dba8ed0 RCX: ffffffff8192e20f
[ 110.324172][ T6036] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802e339e80
[ 110.332155][ T6036] RBP: ffff88802e33a128 R08: ffff88802e339e87 R09: 1ffff11005c673d0
[ 110.340135][ T6036] R10: dffffc0000000000 R11: ffffed1005c673d1 R12: dffffc0000000000
[ 110.348109][ T6036] R13: ffff88802e339e80 R14: ffff8880b863ab00 R15: ffff88802e339e80
[ 110.356098][ T6036] FS: 00005555871d9500(0000) GS:ffff888125d25000(0000) knlGS:0000000000000000
[ 110.365034][ T6036] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 110.371613][ T6036] CR2: 00007fb435bfee9c CR3: 0000000073008000 CR4: 00000000003526f0
[ 110.379584][ T6036] Call Trace:
[ 110.382867][ T6036]
[ 110.385808][ T6036] rt_mutex_setprio+0x488/0xb70
[ 110.390684][ T6036] remove_waiter+0x7f5/0xaf0
[ 110.395275][ T6036] ? lockdep_hardirqs_on+0x98/0x140
[ 110.400479][ T6036] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 110.406197][ T6036] futex_lock_pi+0x530/0xa90
[ 110.410797][ T6036] ? __pfx_futex_lock_pi+0x10/0x10
[ 110.415921][ T6036] ? futex_hash+0x40/0x2d0
[ 110.420333][ T6036] ? futex_hash+0x2ad/0x2d0
[ 110.424835][ T6036] ? __pfx_futex_wake_mark+0x10/0x10
[ 110.430127][ T6036] ? __pfx_futex_wake+0x10/0x10
[ 110.434993][ T6036] do_futex+0x292/0x420
[ 110.439157][ T6036] ? __pfx_do_futex+0x10/0x10
[ 110.443850][ T6036] __se_sys_futex+0x36f/0x400
[ 110.448528][ T6036] ? __pfx___se_sys_futex+0x10/0x10
[ 110.453750][ T6036] ? __x64_sys_futex+0x21/0xf0
[ 110.458514][ T6036] do_syscall_64+0xfa/0xf80
[ 110.463020][ T6036] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.469086][ T6036] ? clear_bhb_loop+0x60/0xb0
[ 110.473763][ T6036] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.479655][ T6036] RIP: 0033:0x7f4dd2b8f749
[ 110.484089][ T6036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 110.504319][ T6036] RSP: 002b:00007ffd006f0908 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 110.512774][ T6036] RAX: ffffffffffffffda RBX: 00007f4dd2de5fa0 RCX: 00007f4dd2b8f749
[ 110.520755][ T6036] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 0000200000000180
[ 110.528731][ T6036] RBP: 00007f4dd2c13f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 110.536890][ T6036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 110.544864][ T6036] R13: 00007f4dd2de5fa0 R14: 00007f4dd2de5fa0 R15: 0000000000000006
[ 110.552858][ T6036]
[ 110.555881][ T6036] Kernel panic - not syncing: kernel: panic_on_warn set ...
[ 110.563165][ T6036] CPU: 1 UID: 0 PID: 6036 Comm: syz.0.17 Not tainted syzkaller #0 PREEMPT(full)
[ 110.572283][ T6036] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 10/25/2025
[ 110.582454][ T6036] Call Trace:
[ 110.585741][ T6036]
[ 110.588684][ T6036] dump_stack_lvl+0x99/0x250
[ 110.593281][ T6036] ? __asan_memcpy+0x40/0x70
[ 110.597884][ T6036] ? __pfx_dump_stack_lvl+0x10/0x10
[ 110.603087][ T6036] ? __pfx__printk+0x10/0x10
[ 110.607694][ T6036] vpanic+0x237/0x6d0
[ 110.611714][ T6036] ? __pfx_vpanic+0x10/0x10
[ 110.616218][ T6036] ? is_bpf_text_address+0x292/0x2b0
[ 110.621503][ T6036] ? is_bpf_text_address+0x26/0x2b0
[ 110.626705][ T6036] panic+0xb9/0xc0
[ 110.630516][ T6036] ? __pfx_panic+0x10/0x10
[ 110.634945][ T6036] __warn+0x317/0x4b0
[ 110.638932][ T6036] ? sched_change_end+0x4f6/0x640
[ 110.643981][ T6036] ? sched_change_end+0x4f6/0x640
[ 110.649100][ T6036] __report_bug+0x288/0x500
[ 110.653610][ T6036] ? sched_change_end+0x4f6/0x640
[ 110.658657][ T6036] ? __pfx___report_bug+0x10/0x10
[ 110.663690][ T6036] ? rcu_read_lock_sched_held+0x89/0x100
[ 110.669326][ T6036] ? __pfx_rcu_read_lock_sched_held+0x10/0x10
[ 110.675491][ T6036] ? sched_change_end+0x4f6/0x640
[ 110.680561][ T6036] report_bug+0x16a/0x220
[ 110.684898][ T6036] ? sched_change_end+0x4f6/0x640
[ 110.689925][ T6036] ? sched_change_end+0x4f8/0x640
[ 110.694954][ T6036] handle_bug+0x98/0x200
[ 110.699196][ T6036] exc_invalid_op+0x1a/0x50
[ 110.703802][ T6036] asm_exc_invalid_op+0x1a/0x20
[ 110.708652][ T6036] RIP: 0010:sched_change_end+0x4f6/0x640
[ 110.714287][ T6036] Code: 00 74 26 48 83 c4 38 5b 41 5c 41 5d 41 5e 41 5f 5d c3 cc cc cc cc cc 90 0f 0b 90 e9 1d fc ff ff 90 0f 0b 90 e9 86 fc ff ff 90 <0f> 0b 90 eb d4 89 d9 80 e1 07 80 c1 03 38 c1 0f 8c 49 fb ff ff 48
[ 110.733915][ T6036] RSP: 0018:ffffc90003477850 EFLAGS: 00010046
[ 110.739983][ T6036] RAX: 1ffff11005c673d0 RBX: ffffffff8dba8ed0 RCX: ffffffff8192e20f
[ 110.747955][ T6036] RDX: 0000000000000000 RSI: 0000000000000008 RDI: ffff88802e339e80
[ 110.755929][ T6036] RBP: ffff88802e33a128 R08: ffff88802e339e87 R09: 1ffff11005c673d0
[ 110.763904][ T6036] R10: dffffc0000000000 R11: ffffed1005c673d1 R12: dffffc0000000000
[ 110.771963][ T6036] R13: ffff88802e339e80 R14: ffff8880b863ab00 R15: ffff88802e339e80
[ 110.780027][ T6036] ? sched_change_end+0x4af/0x640
[ 110.785067][ T6036] rt_mutex_setprio+0x488/0xb70
[ 110.789925][ T6036] remove_waiter+0x7f5/0xaf0
[ 110.794532][ T6036] ? lockdep_hardirqs_on+0x98/0x140
[ 110.799734][ T6036] rt_mutex_cleanup_proxy_lock+0x6c/0x100
[ 110.805455][ T6036] futex_lock_pi+0x530/0xa90
[ 110.810051][ T6036] ? __pfx_futex_lock_pi+0x10/0x10
[ 110.815202][ T6036] ? futex_hash+0x40/0x2d0
[ 110.819616][ T6036] ? futex_hash+0x2ad/0x2d0
[ 110.824118][ T6036] ? __pfx_futex_wake_mark+0x10/0x10
[ 110.829408][ T6036] ? __pfx_futex_wake+0x10/0x10
[ 110.834271][ T6036] do_futex+0x292/0x420
[ 110.838432][ T6036] ? __pfx_do_futex+0x10/0x10
[ 110.843111][ T6036] __se_sys_futex+0x36f/0x400
[ 110.847793][ T6036] ? __pfx___se_sys_futex+0x10/0x10
[ 110.852995][ T6036] ? __x64_sys_futex+0x21/0xf0
[ 110.857762][ T6036] do_syscall_64+0xfa/0xf80
[ 110.862376][ T6036] ? entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.868446][ T6036] ? clear_bhb_loop+0x60/0xb0
[ 110.873126][ T6036] entry_SYSCALL_64_after_hwframe+0x77/0x7f
[ 110.879020][ T6036] RIP: 0033:0x7f4dd2b8f749
[ 110.883434][ T6036] Code: ff ff c3 66 2e 0f 1f 84 00 00 00 00 00 0f 1f 40 00 48 89 f8 48 89 f7 48 89 d6 48 89 ca 4d 89 c2 4d 89 c8 4c 8b 4c 24 08 0f 05 <48> 3d 01 f0 ff ff 73 01 c3 48 c7 c1 a8 ff ff ff f7 d8 64 89 01 48
[ 110.903042][ T6036] RSP: 002b:00007ffd006f0908 EFLAGS: 00000246 ORIG_RAX: 00000000000000ca
[ 110.911675][ T6036] RAX: ffffffffffffffda RBX: 00007f4dd2de5fa0 RCX: 00007f4dd2b8f749
[ 110.919663][ T6036] RDX: 0000000000000002 RSI: 0000000000000086 RDI: 0000200000000180
[ 110.927648][ T6036] RBP: 00007f4dd2c13f91 R08: 0000000000000000 R09: 00000000fffffffc
[ 110.935634][ T6036] R10: 0000000000000000 R11: 0000000000000246 R12: 0000000000000000
[ 110.943611][ T6036] R13: 00007f4dd2de5fa0 R14: 00007f4dd2de5fa0 R15: 0000000000000006
[ 110.951595][ T6036]
[ 112.070938][ T6036] Shutting down cpus with NMI
[ 112.076274][ T6036] Kernel Offset: disabled
[ 112.080614][ T6036] Rebooting in 86400 seconds..