Warning: Permanently added '10.128.0.23' (ED25519) to the list of known hosts.
2025/10/03 18:10:09 parsed 1 programs
[ 477.954086][ T30] audit: type=1400 audit(1759515009.509:64): avc: denied { node_bind } for pid=283 comm="syz-execprog" saddr=::1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:node_t tclass=tcp_socket permissive=1
[ 477.975398][ T30] audit: type=1400 audit(1759515009.509:65): avc: denied { module_request } for pid=283 comm="syz-execprog" kmod="net-pf-2-proto-262-type-1" scontext=root:sysadm_r:sysadm_t tcontext=system_u:system_r:kernel_t tclass=system permissive=1
[ 478.968990][ T30] audit: type=1400 audit(1759515010.529:66): avc: denied { mounton } for pid=291 comm="syz-executor" path="/syzcgroup/unified" dev="sda1" ino=2023 scontext=root:sysadm_r:sysadm_t tcontext=root:object_r:root_t tclass=dir permissive=1
[ 478.971369][ T291] cgroup: Unknown subsys name 'net'
[ 478.991859][ T30] audit: type=1400 audit(1759515010.529:67): avc: denied { mount } for pid=291 comm="syz-executor" name="/" dev="cgroup2" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 479.019047][ T30] audit: type=1400 audit(1759515010.549:68): avc: denied { unmount } for pid=291 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:cgroup_t tclass=filesystem permissive=1
[ 479.019287][ T291] cgroup: Unknown subsys name 'devices'
[ 479.192582][ T291] cgroup: Unknown subsys name 'hugetlb'
[ 479.198221][ T291] cgroup: Unknown subsys name 'rlimit'
[ 479.465552][ T30] audit: type=1400 audit(1759515011.019:69): avc: denied { setattr } for pid=291 comm="syz-executor" name="raw-gadget" dev="devtmpfs" ino=254 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:device_t tclass=chr_file permissive=1
[ 479.488961][ T30] audit: type=1400 audit(1759515011.019:70): avc: denied { create } for pid=291 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 479.509365][ T30] audit: type=1400 audit(1759515011.019:71): avc: denied { write } for pid=291 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 479.529740][ T30] audit: type=1400 audit(1759515011.019:72): avc: denied { read } for pid=291 comm="syz-executor" scontext=root:sysadm_r:sysadm_t tcontext=root:sysadm_r:sysadm_t tclass=netlink_generic_socket permissive=1
[ 479.537530][ T294] SELinux: Context root:object_r:swapfile_t is not valid (left unmapped).
[ 479.549979][ T30] audit: type=1400 audit(1759515011.019:73): avc: denied { mounton } for pid=291 comm="syz-executor" path="/proc/sys/fs/binfmt_misc" dev="binfmt_misc" ino=1 scontext=root:sysadm_r:sysadm_t tcontext=system_u:object_r:binfmt_misc_fs_t tclass=dir permissive=1
[ 479.593339][ T291] Adding 124996k swap on ./swap-file. Priority:0 extents:1 across:124996k
[ 480.022686][ T296] request_module fs-gadgetfs succeeded, but still no fs?
[ 480.195860][ T306] bridge0: port 1(bridge_slave_0) entered blocking state
[ 480.203154][ T306] bridge0: port 1(bridge_slave_0) entered disabled state
[ 480.210720][ T306] device bridge_slave_0 entered promiscuous mode
[ 480.217578][ T306] bridge0: port 2(bridge_slave_1) entered blocking state
[ 480.224660][ T306] bridge0: port 2(bridge_slave_1) entered disabled state
[ 480.232065][ T306] device bridge_slave_1 entered promiscuous mode
[ 480.296889][ T306] bridge0: port 2(bridge_slave_1) entered blocking state
[ 480.303985][ T306] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 480.311612][ T306] bridge0: port 1(bridge_slave_0) entered blocking state
[ 480.318658][ T306] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 480.338521][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 480.346326][ T302] bridge0: port 1(bridge_slave_0) entered disabled state
[ 480.353656][ T302] bridge0: port 2(bridge_slave_1) entered disabled state
[ 480.364516][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 480.372821][ T302] bridge0: port 1(bridge_slave_0) entered blocking state
[ 480.379853][ T302] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 480.391864][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 480.400189][ T302] bridge0: port 2(bridge_slave_1) entered blocking state
[ 480.407227][ T302] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 480.420401][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 480.430982][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 480.448032][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 480.460613][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 480.468858][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 480.476726][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 480.486099][ T306] device veth0_vlan entered promiscuous mode
[ 480.496741][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 480.506511][ T306] device veth1_macvtap entered promiscuous mode
[ 480.516443][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 480.527070][ T302] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 481.236059][ T199] device bridge_slave_1 left promiscuous mode
[ 481.242554][ T199] bridge0: port 2(bridge_slave_1) entered disabled state
[ 481.250556][ T199] device bridge_slave_0 left promiscuous mode
[ 481.256917][ T199] bridge0: port 1(bridge_slave_0) entered disabled state
[ 481.265497][ T199] device veth1_macvtap left promiscuous mode
[ 481.271563][ T199] device veth0_vlan left promiscuous mode
2025/10/03 18:10:12 executed programs: 0
[ 481.413171][ T365] bridge0: port 1(bridge_slave_0) entered blocking state
[ 481.420316][ T365] bridge0: port 1(bridge_slave_0) entered disabled state
[ 481.427804][ T365] device bridge_slave_0 entered promiscuous mode
[ 481.434900][ T365] bridge0: port 2(bridge_slave_1) entered blocking state
[ 481.441977][ T365] bridge0: port 2(bridge_slave_1) entered disabled state
[ 481.449495][ T365] device bridge_slave_1 entered promiscuous mode
[ 481.510429][ T365] bridge0: port 2(bridge_slave_1) entered blocking state
[ 481.517481][ T365] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 481.524862][ T365] bridge0: port 1(bridge_slave_0) entered blocking state
[ 481.531915][ T365] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 481.554617][ T347] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 481.562321][ T347] bridge0: port 1(bridge_slave_0) entered disabled state
[ 481.569518][ T347] bridge0: port 2(bridge_slave_1) entered disabled state
[ 481.579007][ T347] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 481.587319][ T347] bridge0: port 1(bridge_slave_0) entered blocking state
[ 481.594406][ T347] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 481.603468][ T347] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 481.611860][ T347] bridge0: port 2(bridge_slave_1) entered blocking state
[ 481.619060][ T347] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 481.637397][ T347] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 481.645553][ T347] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 481.664881][ T347] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 481.683527][ T347] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 481.691651][ T347] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 481.699220][ T347] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 481.707883][ T365] device veth0_vlan entered promiscuous mode
[ 481.719265][ T347] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 481.732224][ T365] device veth1_macvtap entered promiscuous mode
[ 481.743442][ T347] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 481.754006][ T347] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 496.854674][ T377] bridge0: port 1(bridge_slave_0) entered blocking state
[ 496.861777][ T377] bridge0: port 1(bridge_slave_0) entered disabled state
[ 496.869370][ T377] device bridge_slave_0 entered promiscuous mode
[ 496.876335][ T377] bridge0: port 2(bridge_slave_1) entered blocking state
[ 496.883431][ T377] bridge0: port 2(bridge_slave_1) entered disabled state
[ 496.891072][ T377] device bridge_slave_1 entered promiscuous mode
[ 496.949317][ T377] bridge0: port 2(bridge_slave_1) entered blocking state
[ 496.956397][ T377] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 496.963705][ T377] bridge0: port 1(bridge_slave_0) entered blocking state
[ 496.970766][ T377] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 496.990806][ T267] bridge0: port 1(bridge_slave_0) entered disabled state
[ 496.998138][ T267] bridge0: port 2(bridge_slave_1) entered disabled state
[ 497.005710][ T267] IPv6: ADDRCONF(NETDEV_CHANGE): veth1: link becomes ready
[ 497.013302][ T267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0: link becomes ready
[ 497.022463][ T267] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_0: link becomes ready
[ 497.030662][ T267] bridge0: port 1(bridge_slave_0) entered blocking state
[ 497.037697][ T267] bridge0: port 1(bridge_slave_0) entered forwarding state
[ 497.046322][ T267] IPv6: ADDRCONF(NETDEV_CHANGE): bridge_slave_1: link becomes ready
[ 497.054762][ T267] bridge0: port 2(bridge_slave_1) entered blocking state
[ 497.061816][ T267] bridge0: port 2(bridge_slave_1) entered forwarding state
[ 497.074581][ T267] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_0: link becomes ready
[ 497.084082][ T267] IPv6: ADDRCONF(NETDEV_CHANGE): hsr_slave_1: link becomes ready
[ 497.097799][ T267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_virt_wifi: link becomes ready
[ 497.109259][ T267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_vlan: link becomes ready
[ 497.117471][ T267] IPv6: ADDRCONF(NETDEV_CHANGE): vlan0: link becomes ready
[ 497.125244][ T267] IPv6: ADDRCONF(NETDEV_CHANGE): vlan1: link becomes ready
[ 497.134856][ T377] device veth0_vlan entered promiscuous mode
2025/10/03 18:10:28 executed programs: 3
[ 497.145083][ T267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_macvtap: link becomes ready
[ 497.154534][ T377] device veth1_macvtap entered promiscuous mode
[ 497.164255][ T267] IPv6: ADDRCONF(NETDEV_CHANGE): veth0_to_batadv: link becomes ready
[ 497.174250][ T267] IPv6: ADDRCONF(NETDEV_CHANGE): veth1_to_batadv: link becomes ready
[ 622.180364][ T31] INFO: task syz.2.17:375 blocked for more than 122 seconds.
[ 622.187786][ T31] Not tainted syzkaller #0
[ 622.192844][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 622.201551][ T31] task:syz.2.17 state:D stack:25824 pid: 375 ppid: 365 flags:0x00004000
[ 622.210968][ T31] Call Trace:
[ 622.214265][ T31]
[ 622.217314][ T31] __schedule+0xb6e/0x14c0
[ 622.221804][ T31] ? release_firmware_map_entry+0x190/0x190
[ 622.227751][ T31] ? __kasan_check_write+0x14/0x20
[ 622.232917][ T31] ? _raw_spin_lock_irq+0x8f/0xe0
[ 622.237966][ T31] ? _raw_spin_lock_irqsave+0x110/0x110
[ 622.243556][ T31] schedule+0x11e/0x1e0
[ 622.247722][ T31] rwsem_down_write_slowpath+0xae5/0x1930
[ 622.253505][ T31] ? rwsem_down_read_slowpath+0x1230/0x1230
[ 622.259431][ T31] ? dput+0x47/0x90
[ 622.263296][ T31] ? kasan_save_stack+0x49/0x60
[ 622.268161][ T31] ? kasan_save_stack+0x3a/0x60
[ 622.273079][ T31] ? __kasan_record_aux_stack+0xd2/0x100
[ 622.278740][ T31] ? call_rcu+0x105/0xfe0
[ 622.283105][ T31] ? __fput+0x610/0x8b0
[ 622.287278][ T31] ? ____fput+0x15/0x20
[ 622.291474][ T31] ? task_work_run+0x101/0x190
[ 622.296262][ T31] ? exit_to_user_mode_loop+0xd0/0xe0
[ 622.301669][ T31] ? rwsem_write_trylock+0x130/0x300
[ 622.306972][ T31] ? clear_nonspinnable+0x60/0x60
[ 622.312032][ T31] ? perf_event_exit_event+0x520/0x520
[ 622.317519][ T31] ? mutex_unlock+0x89/0x220
[ 622.322147][ T31] down_write+0x29/0x30
[ 622.326317][ T31] exit_mmap+0x127/0x860
[ 622.330590][ T31] ? vm_brk+0x30/0x30
[ 622.334584][ T31] ? mutex_unlock+0x89/0x220
[ 622.339171][ T31] ? uprobe_clear_state+0x2c1/0x320
[ 622.344402][ T31] __mmput+0x93/0x320
[ 622.348401][ T31] ? mmput+0x48/0x150
[ 622.352681][ T31] mmput+0x50/0x150
[ 622.356546][ T31] do_exit+0x9d2/0x27a0
[ 622.360739][ T31] ? blkcg_maybe_throttle_current+0x1df/0x9e0
[ 622.366829][ T31] ? put_task_struct+0x90/0x90
[ 622.371641][ T31] ? __blkcg_punt_bio_submit+0x170/0x170
[ 622.377292][ T31] ? ____fput+0x15/0x20
[ 622.381498][ T31] do_group_exit+0x141/0x310
[ 622.386286][ T31] ? debug_smp_processor_id+0x17/0x20
[ 622.391697][ T31] __x64_sys_exit_group+0x3f/0x40
[ 622.396744][ T31] x64_sys_call+0x832/0x9a0
[ 622.401279][ T31] do_syscall_64+0x4c/0xa0
[ 622.405716][ T31] ? clear_bhb_loop+0x50/0xa0
[ 622.410426][ T31] ? clear_bhb_loop+0x50/0xa0
[ 622.415118][ T31] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 622.421077][ T31] RIP: 0033:0x7f19b009aec9
[ 622.425505][ T31] RSP: 002b:00007fffa781e158 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 622.433955][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f19b009aec9
[ 622.441976][ T31] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 622.449961][ T31] RBP: 0000000000000003 R08: 00000005a781e24f R09: 00007f19b02bd280
[ 622.457961][ T31] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 622.465963][ T31] R13: 00007f19b02bd280 R14: 0000000000000003 R15: 00007fffa781e210
[ 622.473959][ T31]
[ 622.477100][ T31] INFO: task syz.3.18:387 blocked for more than 123 seconds.
[ 622.484489][ T31] Not tainted syzkaller #0
[ 622.489442][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 622.498147][ T31] task:syz.3.18 state:D stack:24912 pid: 387 ppid: 377 flags:0x00004000
[ 622.507407][ T31] Call Trace:
[ 622.510717][ T31]
[ 622.513658][ T31] __schedule+0xb6e/0x14c0
[ 622.518073][ T31] ? release_firmware_map_entry+0x190/0x190
[ 622.524010][ T31] ? __kasan_check_write+0x14/0x20
[ 622.529146][ T31] ? _raw_spin_lock_irq+0x8f/0xe0
[ 622.534241][ T31] ? _raw_spin_lock_irqsave+0x110/0x110
[ 622.539812][ T31] schedule+0x11e/0x1e0
[ 622.544005][ T31] rwsem_down_write_slowpath+0xae5/0x1930
[ 622.549746][ T31] ? rwsem_down_read_slowpath+0x1230/0x1230
[ 622.555770][ T31] ? dput+0x47/0x90
[ 622.559597][ T31] ? kasan_save_stack+0x49/0x60
[ 622.564480][ T31] ? kasan_save_stack+0x3a/0x60
[ 622.569340][ T31] ? __kasan_record_aux_stack+0xd2/0x100
[ 622.575001][ T31] ? call_rcu+0x105/0xfe0
[ 622.579350][ T31] ? __fput+0x610/0x8b0
[ 622.583573][ T31] ? ____fput+0x15/0x20
[ 622.587755][ T31] ? task_work_run+0x101/0x190
[ 622.592566][ T31] ? exit_to_user_mode_loop+0xd0/0xe0
[ 622.597955][ T31] ? rwsem_write_trylock+0x130/0x300
[ 622.603300][ T31] ? clear_nonspinnable+0x60/0x60
[ 622.608344][ T31] ? perf_event_exit_event+0x520/0x520
[ 622.614067][ T31] ? mutex_unlock+0x89/0x220
[ 622.618678][ T31] down_write+0x29/0x30
[ 622.622871][ T31] exit_mmap+0x127/0x860
[ 622.627132][ T31] ? vm_brk+0x30/0x30
[ 622.631143][ T31] ? mutex_unlock+0x89/0x220
[ 622.635749][ T31] ? uprobe_clear_state+0x2c1/0x320
[ 622.640981][ T31] __mmput+0x93/0x320
[ 622.644977][ T31] ? mmput+0x48/0x150
[ 622.648971][ T31] mmput+0x50/0x150
[ 622.652877][ T31] do_exit+0x9d2/0x27a0
[ 622.657060][ T31] ? blkcg_maybe_throttle_current+0x1df/0x9e0
[ 622.663166][ T31] ? put_task_struct+0x90/0x90
[ 622.668057][ T31] ? __blkcg_punt_bio_submit+0x170/0x170
[ 622.673770][ T31] do_group_exit+0x141/0x310
[ 622.678410][ T31] __x64_sys_exit_group+0x3f/0x40
[ 622.683476][ T31] x64_sys_call+0x832/0x9a0
[ 622.687993][ T31] do_syscall_64+0x4c/0xa0
[ 622.692466][ T31] ? clear_bhb_loop+0x50/0xa0
[ 622.697157][ T31] ? clear_bhb_loop+0x50/0xa0
[ 622.701880][ T31] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 622.707889][ T31] RIP: 0033:0x7f0831031ec9
[ 622.712348][ T31] RSP: 002b:00007fff6d0f83a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 622.720819][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0831031ec9
[ 622.728804][ T31] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 622.736854][ T31] RBP: 0000000000000003 R08: 000000056d0f849f R09: 00007f0831254280
[ 622.744863][ T31] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 622.752855][ T31] R13: 00007f0831254280 R14: 0000000000000003 R15: 00007fff6d0f8460
[ 622.760858][ T31]
[ 622.763876][ T31] NMI backtrace for cpu 0
[ 622.768198][ T31] CPU: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0
[ 622.775387][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 622.785430][ T31] Call Trace:
[ 622.788698][ T31]
[ 622.791623][ T31] __dump_stack+0x21/0x30
[ 622.795949][ T31] dump_stack_lvl+0xee/0x150
[ 622.800530][ T31] ? show_regs_print_info+0x20/0x20
[ 622.805722][ T31] dump_stack+0x15/0x20
[ 622.809867][ T31] nmi_cpu_backtrace+0x2b4/0x2c0
[ 622.814800][ T31] ? rcu_read_unlock_special+0xab/0x460
[ 622.820339][ T31] ? nmi_trigger_cpumask_backtrace+0x240/0x240
[ 622.826487][ T31] ? __rcu_read_unlock+0xa0/0xa0
[ 622.831415][ T31] ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 622.837473][ T31] ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 622.843531][ T31] nmi_trigger_cpumask_backtrace+0x138/0x240
[ 622.849505][ T31] arch_trigger_cpumask_backtrace+0x10/0x20
[ 622.855549][ T31] watchdog+0xd64/0xea0
[ 622.859765][ T31] ? hungtask_pm_notify+0x50/0x50
[ 622.864800][ T31] ? __kasan_check_read+0x11/0x20
[ 622.869832][ T31] ? __kthread_parkme+0xac/0x200
[ 622.874767][ T31] ? preempt_count_add+0x90/0x1b0
[ 622.879784][ T31] kthread+0x411/0x500
[ 622.883844][ T31] ? hungtask_pm_notify+0x50/0x50
[ 622.888879][ T31] ? kthread_blkcg+0xd0/0xd0
[ 622.893462][ T31] ret_from_fork+0x1f/0x30
[ 622.897873][ T31]
[ 622.900981][ T31] Sending NMI from CPU 0 to CPUs 1:
[ 622.906236][ C1] NMI backtrace for cpu 1 skipped: idling at default_idle+0xf/0x20
[ 643.300227][ T31] INFO: task syz.2.17:375 blocked for more than 144 seconds.
[ 643.307630][ T31] Not tainted syzkaller #0
[ 643.312628][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 643.321331][ T31] task:syz.2.17 state:D stack:25824 pid: 375 ppid: 365 flags:0x00004000
[ 643.330689][ T31] Call Trace:
[ 643.333990][ T31]
[ 643.336914][ T31] __schedule+0xb6e/0x14c0
[ 643.341380][ T31] ? release_firmware_map_entry+0x190/0x190
[ 643.347292][ T31] ? __kasan_check_write+0x14/0x20
[ 643.352460][ T31] ? _raw_spin_lock_irq+0x8f/0xe0
[ 643.357500][ T31] ? _raw_spin_lock_irqsave+0x110/0x110
[ 643.363094][ T31] schedule+0x11e/0x1e0
[ 643.367259][ T31] rwsem_down_write_slowpath+0xae5/0x1930
[ 643.373006][ T31] ? rwsem_down_read_slowpath+0x1230/0x1230
[ 643.378931][ T31] ? dput+0x47/0x90
[ 643.382767][ T31] ? kasan_save_stack+0x49/0x60
[ 643.387628][ T31] ? kasan_save_stack+0x3a/0x60
[ 643.392501][ T31] ? __kasan_record_aux_stack+0xd2/0x100
[ 643.398147][ T31] ? call_rcu+0x105/0xfe0
[ 643.402502][ T31] ? __fput+0x610/0x8b0
[ 643.406700][ T31] ? ____fput+0x15/0x20
[ 643.410878][ T31] ? task_work_run+0x101/0x190
[ 643.415652][ T31] ? exit_to_user_mode_loop+0xd0/0xe0
[ 643.421061][ T31] ? rwsem_write_trylock+0x130/0x300
[ 643.426361][ T31] ? clear_nonspinnable+0x60/0x60
[ 643.431406][ T31] ? perf_event_exit_event+0x520/0x520
[ 643.436878][ T31] ? mutex_unlock+0x89/0x220
[ 643.441491][ T31] down_write+0x29/0x30
[ 643.445658][ T31] exit_mmap+0x127/0x860
[ 643.449896][ T31] ? vm_brk+0x30/0x30
[ 643.453898][ T31] ? mutex_unlock+0x89/0x220
[ 643.458591][ T31] ? uprobe_clear_state+0x2c1/0x320
[ 643.463839][ T31] __mmput+0x93/0x320
[ 643.467838][ T31] ? mmput+0x48/0x150
[ 643.471842][ T31] mmput+0x50/0x150
[ 643.475667][ T31] do_exit+0x9d2/0x27a0
[ 643.479818][ T31] ? blkcg_maybe_throttle_current+0x1df/0x9e0
[ 643.485929][ T31] ? put_task_struct+0x90/0x90
[ 643.490750][ T31] ? __blkcg_punt_bio_submit+0x170/0x170
[ 643.496373][ T31] ? ____fput+0x15/0x20
[ 643.500542][ T31] do_group_exit+0x141/0x310
[ 643.505231][ T31] ? debug_smp_processor_id+0x17/0x20
[ 643.510711][ T31] __x64_sys_exit_group+0x3f/0x40
[ 643.515786][ T31] x64_sys_call+0x832/0x9a0
[ 643.520350][ T31] do_syscall_64+0x4c/0xa0
[ 643.524785][ T31] ? clear_bhb_loop+0x50/0xa0
[ 643.529460][ T31] ? clear_bhb_loop+0x50/0xa0
[ 643.534186][ T31] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 643.540145][ T31] RIP: 0033:0x7f19b009aec9
[ 643.544739][ T31] RSP: 002b:00007fffa781e158 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 643.553172][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f19b009aec9
[ 643.561204][ T31] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 643.569194][ T31] RBP: 0000000000000003 R08: 00000005a781e24f R09: 00007f19b02bd280
[ 643.577203][ T31] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 643.585213][ T31] R13: 00007f19b02bd280 R14: 0000000000000003 R15: 00007fffa781e210
[ 643.593212][ T31]
[ 643.596239][ T31] INFO: task syz-executor:377 blocked for more than 123 seconds.
[ 643.603979][ T31] Not tainted syzkaller #0
[ 643.608919][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 643.617610][ T31] task:syz-executor state:D stack:21760 pid: 377 ppid: 1 flags:0x00004004
[ 643.626860][ T31] Call Trace:
[ 643.630188][ T31]
[ 643.633139][ T31] __schedule+0xb6e/0x14c0
[ 643.637560][ T31] ? release_firmware_map_entry+0x190/0x190
[ 643.643729][ T31] ? __kasan_check_write+0x14/0x20
[ 643.648865][ T31] ? _raw_spin_lock_irq+0x8f/0xe0
[ 643.653941][ T31] ? _raw_spin_lock_irqsave+0x110/0x110
[ 643.659521][ T31] schedule+0x11e/0x1e0
[ 643.663711][ T31] rwsem_down_write_slowpath+0xae5/0x1930
[ 643.669477][ T31] ? rwsem_down_read_slowpath+0x1230/0x1230
[ 643.675397][ T31] ? kasan_set_track+0x5b/0x70
[ 643.680192][ T31] ? kasan_set_free_info+0x23/0x40
[ 643.685307][ T31] ? ____kasan_slab_free+0x125/0x160
[ 643.690621][ T31] ? __kasan_slab_free+0x11/0x20
[ 643.695569][ T31] ? kmem_cache_free+0x100/0x320
[ 643.700538][ T31] ? __mmdrop+0x304/0x410
[ 643.704880][ T31] ? finish_task_switch+0x2bb/0x780
[ 643.710107][ T31] ? schedule+0x11e/0x1e0
[ 643.714461][ T31] ? do_wait+0x6b3/0x9a0
[ 643.718698][ T31] ? kernel_wait4+0x1a5/0x260
[ 643.723403][ T31] ? x64_sys_call+0xec/0x9a0
[ 643.728003][ T31] ? msr_save_cpuid_features+0x70/0xc0
[ 643.733488][ T31] ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 643.739578][ T31] ? rwsem_write_trylock+0x130/0x300
[ 643.744927][ T31] ? clear_nonspinnable+0x60/0x60
[ 643.749970][ T31] ? perf_event_exit_event+0x520/0x520
[ 643.755486][ T31] ? mutex_unlock+0x89/0x220
[ 643.760126][ T31] down_write+0x29/0x30
[ 643.764285][ T31] exit_mmap+0x127/0x860
[ 643.768529][ T31] ? vm_brk+0x30/0x30
[ 643.772559][ T31] ? mutex_unlock+0x89/0x220
[ 643.777180][ T31] ? uprobe_clear_state+0x2c1/0x320
[ 643.782435][ T31] __mmput+0x93/0x320
[ 643.786457][ T31] ? mmput+0x48/0x150
[ 643.790486][ T31] mmput+0x50/0x150
[ 643.794312][ T31] do_exit+0x9d2/0x27a0
[ 643.798545][ T31] ? put_task_struct+0x90/0x90
[ 643.803370][ T31] ? _raw_spin_lock_irqsave+0xb0/0x110
[ 643.808855][ T31] ? _raw_spin_lock+0xe0/0xe0
[ 643.813570][ T31] ? __kasan_check_write+0x14/0x20
[ 643.818703][ T31] ? _raw_spin_lock_irq+0x8f/0xe0
[ 643.823818][ T31] do_group_exit+0x141/0x310
[ 643.828440][ T31] ? __kasan_check_write+0x14/0x20
[ 643.833756][ T31] get_signal+0x66a/0x1480
[ 643.838195][ T31] arch_do_signal_or_restart+0xc1/0x10f0
[ 643.844050][ T31] ? kernel_waitid+0x370/0x370
[ 643.848852][ T31] ? rcu_gp_kthread_wake+0x90/0x90
[ 643.854015][ T31] ? get_sigframe_size+0x10/0x10
[ 643.858952][ T31] ? kernel_wait+0x160/0x160
[ 643.863580][ T31] ? ____fput+0x15/0x20
[ 643.867763][ T31] exit_to_user_mode_loop+0xa7/0xe0
[ 643.872987][ T31] exit_to_user_mode_prepare+0x87/0xd0
[ 643.878475][ T31] syscall_exit_to_user_mode+0x1a/0x30
[ 643.883991][ T31] do_syscall_64+0x58/0xa0
[ 643.888416][ T31] ? clear_bhb_loop+0x50/0xa0
[ 643.893139][ T31] ? clear_bhb_loop+0x50/0xa0
[ 643.897832][ T31] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 643.903765][ T31] RIP: 0033:0x7f0831027fd3
[ 643.908201][ T31] RSP: 002b:00007fff6d0f83c8 EFLAGS: 00000202 ORIG_RAX: 000000000000003d
[ 643.916641][ T31] RAX: fffffffffffffe00 RBX: 0000000000000002 RCX: 00007f0831027fd3
[ 643.924660][ T31] RDX: 0000000040000000 RSI: 00007fff6d0f840c RDI: 00000000ffffffff
[ 643.932651][ T31] RBP: 00007fff6d0f840c R08: 00000000000001f4 R09: 0000000000000000
[ 643.940877][ T31] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 643.948868][ T31] R13: 0000555575985470 R14: 000000000007962c R15: 00007fff6d0f8460
[ 643.956888][ T31]
[ 643.959946][ T31] INFO: task syz.3.18:387 blocked for more than 144 seconds.
[ 643.967341][ T31] Not tainted syzkaller #0
[ 643.972307][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 643.980992][ T31] task:syz.3.18 state:D stack:24912 pid: 387 ppid: 377 flags:0x00004000
[ 643.990226][ T31] Call Trace:
[ 643.993500][ T31]
[ 643.996422][ T31] __schedule+0xb6e/0x14c0
[ 644.000884][ T31] ? release_firmware_map_entry+0x190/0x190
[ 644.006791][ T31] ? __kasan_check_write+0x14/0x20
[ 644.011932][ T31] ? _raw_spin_lock_irq+0x8f/0xe0
[ 644.016977][ T31] ? _raw_spin_lock_irqsave+0x110/0x110
[ 644.022591][ T31] schedule+0x11e/0x1e0
[ 644.026759][ T31] rwsem_down_write_slowpath+0xae5/0x1930
[ 644.032556][ T31] ? rwsem_down_read_slowpath+0x1230/0x1230
[ 644.038492][ T31] ? dput+0x47/0x90
[ 644.042326][ T31] ? kasan_save_stack+0x49/0x60
[ 644.047190][ T31] ? kasan_save_stack+0x3a/0x60
[ 644.052163][ T31] ? __kasan_record_aux_stack+0xd2/0x100
[ 644.057822][ T31] ? call_rcu+0x105/0xfe0
[ 644.062183][ T31] ? __fput+0x610/0x8b0
[ 644.066361][ T31] ? ____fput+0x15/0x20
[ 644.070568][ T31] ? task_work_run+0x101/0x190
[ 644.075345][ T31] ? exit_to_user_mode_loop+0xd0/0xe0
[ 644.080745][ T31] ? rwsem_write_trylock+0x130/0x300
[ 644.086263][ T31] ? clear_nonspinnable+0x60/0x60
[ 644.091318][ T31] ? perf_event_exit_event+0x520/0x520
[ 644.096790][ T31] ? mutex_unlock+0x89/0x220
[ 644.101404][ T31] down_write+0x29/0x30
[ 644.105678][ T31] exit_mmap+0x127/0x860
[ 644.109952][ T31] ? vm_brk+0x30/0x30
[ 644.114041][ T31] ? mutex_unlock+0x89/0x220
[ 644.118652][ T31] ? uprobe_clear_state+0x2c1/0x320
[ 644.123885][ T31] __mmput+0x93/0x320
[ 644.127881][ T31] ? mmput+0x48/0x150
[ 644.131895][ T31] mmput+0x50/0x150
[ 644.135719][ T31] do_exit+0x9d2/0x27a0
[ 644.139870][ T31] ? blkcg_maybe_throttle_current+0x1df/0x9e0
[ 644.145960][ T31] ? put_task_struct+0x90/0x90
[ 644.150760][ T31] ? __blkcg_punt_bio_submit+0x170/0x170
[ 644.156386][ T31] do_group_exit+0x141/0x310
[ 644.160998][ T31] __x64_sys_exit_group+0x3f/0x40
[ 644.166055][ T31] x64_sys_call+0x832/0x9a0
[ 644.170591][ T31] do_syscall_64+0x4c/0xa0
[ 644.175017][ T31] ? clear_bhb_loop+0x50/0xa0
[ 644.179709][ T31] ? clear_bhb_loop+0x50/0xa0
[ 644.184420][ T31] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 644.190352][ T31] RIP: 0033:0x7f0831031ec9
[ 644.194761][ T31] RSP: 002b:00007fff6d0f83a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 644.203188][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0831031ec9
[ 644.211186][ T31] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 644.219149][ T31] RBP: 0000000000000003 R08: 000000056d0f849f R09: 00007f0831254280
[ 644.227155][ T31] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 644.235167][ T31] R13: 00007f0831254280 R14: 0000000000000003 R15: 00007fff6d0f8460
[ 644.243191][ T31]
[ 644.246231][ T31] NMI backtrace for cpu 0
[ 644.250562][ T31] CPU: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0
[ 644.257790][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 644.267836][ T31] Call Trace:
[ 644.271193][ T31]
[ 644.274116][ T31] __dump_stack+0x21/0x30
[ 644.278440][ T31] dump_stack_lvl+0xee/0x150
[ 644.283019][ T31] ? show_regs_print_info+0x20/0x20
[ 644.288208][ T31] dump_stack+0x15/0x20
[ 644.292354][ T31] nmi_cpu_backtrace+0x2b4/0x2c0
[ 644.297282][ T31] ? rcu_read_unlock_special+0xab/0x460
[ 644.302820][ T31] ? nmi_trigger_cpumask_backtrace+0x240/0x240
[ 644.308967][ T31] ? __rcu_read_unlock+0xa0/0xa0
[ 644.313897][ T31] ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 644.319954][ T31] ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 644.326024][ T31] nmi_trigger_cpumask_backtrace+0x138/0x240
[ 644.332004][ T31] arch_trigger_cpumask_backtrace+0x10/0x20
[ 644.337886][ T31] watchdog+0xd64/0xea0
[ 644.342040][ T31] ? hungtask_pm_notify+0x50/0x50
[ 644.347054][ T31] ? __kasan_check_read+0x11/0x20
[ 644.352072][ T31] ? __kthread_parkme+0xac/0x200
[ 644.357000][ T31] ? preempt_count_add+0x90/0x1b0
[ 644.362101][ T31] kthread+0x411/0x500
[ 644.366158][ T31] ? hungtask_pm_notify+0x50/0x50
[ 644.371172][ T31] ? kthread_blkcg+0xd0/0xd0
[ 644.375752][ T31] ret_from_fork+0x1f/0x30
[ 644.380167][ T31]
[ 644.383263][ T31] Sending NMI from CPU 0 to CPUs 1:
[ 644.388487][ C1] NMI backtrace for cpu 1
[ 644.388497][ C1] CPU: 1 PID: 199 Comm: kworker/u4:3 Not tainted syzkaller #0
[ 644.388514][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 644.388524][ C1] Workqueue: events_unbound toggle_allocation_gate
[ 644.388548][ C1] RIP: 0010:kasan_check_range+0x27/0x290
[ 644.388567][ C1] Code: 00 00 cc b0 01 48 85 f6 0f 84 a9 01 00 00 55 48 89 e5 41 57 41 56 53 49 89 f8 49 01 f0 0f 82 58 02 00 00 49 89 f8 49 c1 e8 2f <41> 81 f8 ff ff 01 00 0f 82 44 02 00 00 49 bf 01 00 00 00 00 fc ff
[ 644.388582][ C1] RSP: 0018:ffffc90000a37788 EFLAGS: 00000a07
[ 644.388595][ C1] RAX: 1ffff110237e1601 RBX: ffffea0004001968 RCX: ffffffff84a8eb11
[ 644.388608][ C1] RDX: 0000000000000001 RSI: 0000000000000004 RDI: ffffea0004001968
[ 644.388619][ C1] RBP: ffffc90000a377a0 R08: 000000000001ffff R09: fffff9400000d361
[ 644.388632][ C1] R10: fffff9400000d361 R11: 1ffffd400000d360 R12: dffffc0000000000
[ 644.388644][ C1] R13: ffffea0004001968 R14: ffffc90000a377e0 R15: 1ffff92000146ef8
[ 644.388657][ C1] FS: 0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 644.388672][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 644.388684][ C1] CR2: 00007f7f54075000 CR3: 000000000660f000 CR4: 00000000003506a0
[ 644.388700][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 644.388709][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 644.388725][ C1] Call Trace:
[ 644.388730][ C1]
[ 644.388735][ C1] __kasan_check_write+0x14/0x20
[ 644.388753][ C1] _raw_spin_lock+0x81/0xe0
[ 644.388770][ C1] ? _raw_spin_trylock_bh+0x130/0x130
[ 644.388787][ C1] ? cpumask_any_but+0x1d0/0x210
[ 644.388805][ C1] __get_locked_pte+0x28e/0x350
[ 644.388822][ C1] __text_poke+0x2a8/0x640
[ 644.388837][ C1] ? __kasan_check_read+0x11/0x20
[ 644.388854][ C1] ? __kmalloc+0x75/0x2c0
[ 644.388871][ C1] ? __kmalloc_track_caller+0x75/0x2c0
[ 644.388889][ C1] ? text_poke+0x20/0x20
[ 644.388903][ C1] ? text_poke_loc_init+0xd6/0x570
[ 644.388918][ C1] ? text_poke_sync+0x30/0x30
[ 644.388932][ C1] ? __kmalloc_track_caller+0x75/0x2c0
[ 644.388950][ C1] ? memcpy+0x56/0x70
[ 644.388966][ C1] text_poke_bp_batch+0x2eb/0x5a0
[ 644.388983][ C1] ? __kmalloc_track_caller+0x75/0x2c0
[ 644.389000][ C1] ? text_poke_loc_init+0x570/0x570
[ 644.389016][ C1] ? __kasan_check_write+0x14/0x20
[ 644.389032][ C1] ? mutex_lock+0x95/0x1a0
[ 644.389046][ C1] ? wait_for_completion_killable_timeout+0x10/0x10
[ 644.389064][ C1] ? text_poke_queue+0xdf/0x180
[ 644.389079][ C1] text_poke_finish+0x1a/0x30
[ 644.389094][ C1] arch_jump_label_transform_apply+0x15/0x30
[ 644.389114][ C1] __jump_label_update+0x37c/0x3a0
[ 644.389131][ C1] jump_label_update+0x39b/0x450
[ 644.389150][ C1] static_key_enable_cpuslocked+0x126/0x240
[ 644.389170][ C1] static_key_enable+0x1a/0x30
[ 644.389187][ C1] toggle_allocation_gate+0xb4/0x410
[ 644.389205][ C1] ? kfence_debugfs_init+0x70/0x70
[ 644.389221][ C1] ? _raw_spin_unlock+0x4d/0x70
[ 644.389238][ C1] ? finish_task_switch+0x16b/0x780
[ 644.389255][ C1] ? __switch_to_asm+0x3a/0x60
[ 644.389272][ C1] ? __schedule+0xb76/0x14c0
[ 644.389287][ C1] process_one_work+0x6be/0xba0
[ 644.389308][ C1] worker_thread+0xa59/0x1200
[ 644.389329][ C1] ? __kthread_parkme+0xac/0x200
[ 644.389345][ C1] kthread+0x411/0x500
[ 644.389360][ C1] ? worker_clr_flags+0x190/0x190
[ 644.389378][ C1] ? kthread_blkcg+0xd0/0xd0
[ 644.389394][ C1] ret_from_fork+0x1f/0x30
[ 644.389411][ C1]
[ 664.420197][ T31] INFO: task syz.2.17:375 blocked for more than 165 seconds.
[ 664.427599][ T31] Not tainted syzkaller #0
[ 664.432613][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 664.441345][ T31] task:syz.2.17 state:D stack:25824 pid: 375 ppid: 365 flags:0x00004000
[ 664.450595][ T31] Call Trace:
[ 664.453884][ T31]
[ 664.456812][ T31] __schedule+0xb6e/0x14c0
[ 664.461263][ T31] ? release_firmware_map_entry+0x190/0x190
[ 664.467191][ T31] ? __kasan_check_write+0x14/0x20
[ 664.472366][ T31] ? _raw_spin_lock_irq+0x8f/0xe0
[ 664.477406][ T31] ? _raw_spin_lock_irqsave+0x110/0x110
[ 664.482997][ T31] schedule+0x11e/0x1e0
[ 664.487163][ T31] rwsem_down_write_slowpath+0xae5/0x1930
[ 664.492920][ T31] ? rwsem_down_read_slowpath+0x1230/0x1230
[ 664.498824][ T31] ? dput+0x47/0x90
[ 664.502665][ T31] ? kasan_save_stack+0x49/0x60
[ 664.507712][ T31] ? kasan_save_stack+0x3a/0x60
[ 664.512597][ T31] ? __kasan_record_aux_stack+0xd2/0x100
[ 664.518407][ T31] ? call_rcu+0x105/0xfe0
[ 664.522856][ T31] ? __fput+0x610/0x8b0
[ 664.527047][ T31] ? ____fput+0x15/0x20
[ 664.531255][ T31] ? task_work_run+0x101/0x190
[ 664.536037][ T31] ? exit_to_user_mode_loop+0xd0/0xe0
[ 664.541478][ T31] ? rwsem_write_trylock+0x130/0x300
[ 664.547000][ T31] ? clear_nonspinnable+0x60/0x60
[ 664.552072][ T31] ? perf_event_exit_event+0x520/0x520
[ 664.557547][ T31] ? mutex_unlock+0x89/0x220
[ 664.562171][ T31] down_write+0x29/0x30
[ 664.566341][ T31] exit_mmap+0x127/0x860
[ 664.570648][ T31] ? vm_brk+0x30/0x30
[ 664.574641][ T31] ? mutex_unlock+0x89/0x220
[ 664.579238][ T31] ? uprobe_clear_state+0x2c1/0x320
[ 664.584492][ T31] __mmput+0x93/0x320
[ 664.588488][ T31] ? mmput+0x48/0x150
[ 664.592497][ T31] mmput+0x50/0x150
[ 664.596320][ T31] do_exit+0x9d2/0x27a0
[ 664.600521][ T31] ? blkcg_maybe_throttle_current+0x1df/0x9e0
[ 664.606604][ T31] ? put_task_struct+0x90/0x90
[ 664.611569][ T31] ? __blkcg_punt_bio_submit+0x170/0x170
[ 664.617216][ T31] ? ____fput+0x15/0x20
[ 664.621410][ T31] do_group_exit+0x141/0x310
[ 664.626014][ T31] ? debug_smp_processor_id+0x17/0x20
[ 664.631433][ T31] __x64_sys_exit_group+0x3f/0x40
[ 664.636472][ T31] x64_sys_call+0x832/0x9a0
[ 664.641010][ T31] do_syscall_64+0x4c/0xa0
[ 664.645447][ T31] ? clear_bhb_loop+0x50/0xa0
[ 664.650163][ T31] ? clear_bhb_loop+0x50/0xa0
[ 664.654851][ T31] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 664.660837][ T31] RIP: 0033:0x7f19b009aec9
[ 664.665277][ T31] RSP: 002b:00007fffa781e158 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 664.673734][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f19b009aec9
[ 664.681747][ T31] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 664.689717][ T31] RBP: 0000000000000003 R08: 00000005a781e24f R09: 00007f19b02bd280
[ 664.697738][ T31] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 664.705756][ T31] R13: 00007f19b02bd280 R14: 0000000000000003 R15: 00007fffa781e210
[ 664.713780][ T31]
[ 664.716813][ T31] INFO: task syz-executor:377 blocked for more than 144 seconds.
[ 664.724572][ T31] Not tainted syzkaller #0
[ 664.729620][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 664.738520][ T31] task:syz-executor state:D stack:21760 pid: 377 ppid: 1 flags:0x00004004
[ 664.747764][ T31] Call Trace:
[ 664.751079][ T31]
[ 664.754058][ T31] __schedule+0xb6e/0x14c0
[ 664.758651][ T31] ? release_firmware_map_entry+0x190/0x190
[ 664.764605][ T31] ? __kasan_check_write+0x14/0x20
[ 664.769738][ T31] ? _raw_spin_lock_irq+0x8f/0xe0
[ 664.774895][ T31] ? _raw_spin_lock_irqsave+0x110/0x110
[ 664.780487][ T31] schedule+0x11e/0x1e0
[ 664.784645][ T31] rwsem_down_write_slowpath+0xae5/0x1930
[ 664.790395][ T31] ? rwsem_down_read_slowpath+0x1230/0x1230
[ 664.796307][ T31] ? kasan_set_track+0x5b/0x70
[ 664.801102][ T31] ? kasan_set_free_info+0x23/0x40
[ 664.806223][ T31] ? ____kasan_slab_free+0x125/0x160
[ 664.811601][ T31] ? __kasan_slab_free+0x11/0x20
[ 664.816568][ T31] ? kmem_cache_free+0x100/0x320
[ 664.821577][ T31] ? __mmdrop+0x304/0x410
[ 664.825931][ T31] ? finish_task_switch+0x2bb/0x780
[ 664.831219][ T31] ? schedule+0x11e/0x1e0
[ 664.835608][ T31] ? do_wait+0x6b3/0x9a0
[ 664.839865][ T31] ? kernel_wait4+0x1a5/0x260
[ 664.844579][ T31] ? x64_sys_call+0xec/0x9a0
[ 664.849179][ T31] ? msr_save_cpuid_features+0x70/0xc0
[ 664.854667][ T31] ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 664.860794][ T31] ? rwsem_write_trylock+0x130/0x300
[ 664.866081][ T31] ? clear_nonspinnable+0x60/0x60
[ 664.871139][ T31] ? perf_event_exit_event+0x520/0x520
[ 664.876610][ T31] ? mutex_unlock+0x89/0x220
[ 664.881232][ T31] down_write+0x29/0x30
[ 664.885397][ T31] exit_mmap+0x127/0x860
[ 664.889652][ T31] ? vm_brk+0x30/0x30
[ 664.893659][ T31] ? mutex_unlock+0x89/0x220
[ 664.898261][ T31] ? uprobe_clear_state+0x2c1/0x320
[ 664.903511][ T31] __mmput+0x93/0x320
[ 664.907523][ T31] ? mmput+0x48/0x150
[ 664.911534][ T31] mmput+0x50/0x150
[ 664.915367][ T31] do_exit+0x9d2/0x27a0
[ 664.919516][ T31] ? put_task_struct+0x90/0x90
[ 664.924313][ T31] ? _raw_spin_lock_irqsave+0xb0/0x110
[ 664.929782][ T31] ? _raw_spin_lock+0xe0/0xe0
[ 664.934479][ T31] ? __kasan_check_write+0x14/0x20
[ 664.939611][ T31] ? _raw_spin_lock_irq+0x8f/0xe0
[ 664.944662][ T31] do_group_exit+0x141/0x310
[ 664.949269][ T31] ? __kasan_check_write+0x14/0x20
[ 664.954406][ T31] get_signal+0x66a/0x1480
[ 664.959274][ T31] arch_do_signal_or_restart+0xc1/0x10f0
[ 664.964937][ T31] ? kernel_waitid+0x370/0x370
[ 664.969718][ T31] ? rcu_gp_kthread_wake+0x90/0x90
[ 664.974872][ T31] ? get_sigframe_size+0x10/0x10
[ 664.979910][ T31] ? kernel_wait+0x160/0x160
[ 664.984580][ T31] ? ____fput+0x15/0x20
[ 664.988759][ T31] exit_to_user_mode_loop+0xa7/0xe0
[ 664.993979][ T31] exit_to_user_mode_prepare+0x87/0xd0
[ 664.999469][ T31] syscall_exit_to_user_mode+0x1a/0x30
[ 665.004952][ T31] do_syscall_64+0x58/0xa0
[ 665.009383][ T31] ? clear_bhb_loop+0x50/0xa0
[ 665.014083][ T31] ? clear_bhb_loop+0x50/0xa0
[ 665.018774][ T31] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 665.024701][ T31] RIP: 0033:0x7f0831027fd3
[ 665.029127][ T31] RSP: 002b:00007fff6d0f83c8 EFLAGS: 00000202 ORIG_RAX: 000000000000003d
[ 665.037590][ T31] RAX: fffffffffffffe00 RBX: 0000000000000002 RCX: 00007f0831027fd3
[ 665.045592][ T31] RDX: 0000000040000000 RSI: 00007fff6d0f840c RDI: 00000000ffffffff
[ 665.053609][ T31] RBP: 00007fff6d0f840c R08: 00000000000001f4 R09: 0000000000000000
[ 665.061607][ T31] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 665.069589][ T31] R13: 0000555575985470 R14: 000000000007962c R15: 00007fff6d0f8460
[ 665.077601][ T31]
[ 665.080651][ T31] INFO: task syz.3.18:387 blocked for more than 165 seconds.
[ 665.088009][ T31] Not tainted syzkaller #0
[ 665.092954][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 665.101638][ T31] task:syz.3.18 state:D stack:24912 pid: 387 ppid: 377 flags:0x00004000
[ 665.110867][ T31] Call Trace:
[ 665.114154][ T31]
[ 665.117077][ T31] __schedule+0xb6e/0x14c0
[ 665.121561][ T31] ? release_firmware_map_entry+0x190/0x190
[ 665.127500][ T31] ? __kasan_check_write+0x14/0x20
[ 665.132650][ T31] ? _raw_spin_lock_irq+0x8f/0xe0
[ 665.137691][ T31] ? _raw_spin_lock_irqsave+0x110/0x110
[ 665.143287][ T31] schedule+0x11e/0x1e0
[ 665.147458][ T31] rwsem_down_write_slowpath+0xae5/0x1930
[ 665.153204][ T31] ? rwsem_down_read_slowpath+0x1230/0x1230
[ 665.159117][ T31] ? dput+0x47/0x90
[ 665.162965][ T31] ? kasan_save_stack+0x49/0x60
[ 665.167823][ T31] ? kasan_save_stack+0x3a/0x60
[ 665.172697][ T31] ? __kasan_record_aux_stack+0xd2/0x100
[ 665.178343][ T31] ? call_rcu+0x105/0xfe0
[ 665.182689][ T31] ? __fput+0x610/0x8b0
[ 665.186855][ T31] ? ____fput+0x15/0x20
[ 665.191031][ T31] ? task_work_run+0x101/0x190
[ 665.195807][ T31] ? exit_to_user_mode_loop+0xd0/0xe0
[ 665.201221][ T31] ? rwsem_write_trylock+0x130/0x300
[ 665.206539][ T31] ? clear_nonspinnable+0x60/0x60
[ 665.211587][ T31] ? perf_event_exit_event+0x520/0x520
[ 665.217057][ T31] ? mutex_unlock+0x89/0x220
[ 665.221671][ T31] down_write+0x29/0x30
[ 665.225838][ T31] exit_mmap+0x127/0x860
[ 665.230105][ T31] ? vm_brk+0x30/0x30
[ 665.234095][ T31] ? mutex_unlock+0x89/0x220
[ 665.238680][ T31] ? uprobe_clear_state+0x2c1/0x320
[ 665.243917][ T31] __mmput+0x93/0x320
[ 665.247912][ T31] ? mmput+0x48/0x150
[ 665.251917][ T31] mmput+0x50/0x150
[ 665.255736][ T31] do_exit+0x9d2/0x27a0
[ 665.259886][ T31] ? blkcg_maybe_throttle_current+0x1df/0x9e0
[ 665.266000][ T31] ? put_task_struct+0x90/0x90
[ 665.270791][ T31] ? __blkcg_punt_bio_submit+0x170/0x170
[ 665.276514][ T31] do_group_exit+0x141/0x310
[ 665.281127][ T31] __x64_sys_exit_group+0x3f/0x40
[ 665.286165][ T31] x64_sys_call+0x832/0x9a0
[ 665.290692][ T31] do_syscall_64+0x4c/0xa0
[ 665.295157][ T31] ? clear_bhb_loop+0x50/0xa0
[ 665.299846][ T31] ? clear_bhb_loop+0x50/0xa0
[ 665.304551][ T31] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 665.310596][ T31] RIP: 0033:0x7f0831031ec9
[ 665.315002][ T31] RSP: 002b:00007fff6d0f83a8 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 665.323435][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f0831031ec9
[ 665.331434][ T31] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 665.339401][ T31] RBP: 0000000000000003 R08: 000000056d0f849f R09: 00007f0831254280
[ 665.347393][ T31] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 665.355398][ T31] R13: 00007f0831254280 R14: 0000000000000003 R15: 00007fff6d0f8460
[ 665.363404][ T31]
[ 665.366433][ T31] NMI backtrace for cpu 0
[ 665.370747][ T31] CPU: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0
[ 665.377932][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 665.387975][ T31] Call Trace:
[ 665.391246][ T31]
[ 665.394170][ T31] __dump_stack+0x21/0x30
[ 665.398505][ T31] dump_stack_lvl+0xee/0x150
[ 665.403095][ T31] ? show_regs_print_info+0x20/0x20
[ 665.408292][ T31] dump_stack+0x15/0x20
[ 665.412448][ T31] nmi_cpu_backtrace+0x2b4/0x2c0
[ 665.417381][ T31] ? sched_show_task+0x37a/0x540
[ 665.422310][ T31] ? nmi_trigger_cpumask_backtrace+0x240/0x240
[ 665.428458][ T31] ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 665.434521][ T31] ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 665.440581][ T31] nmi_trigger_cpumask_backtrace+0x138/0x240
[ 665.446556][ T31] arch_trigger_cpumask_backtrace+0x10/0x20
[ 665.452442][ T31] watchdog+0xd64/0xea0
[ 665.456592][ T31] ? hungtask_pm_notify+0x50/0x50
[ 665.461721][ T31] ? __kasan_check_read+0x11/0x20
[ 665.466757][ T31] ? __kthread_parkme+0xac/0x200
[ 665.471702][ T31] ? preempt_count_add+0x90/0x1b0
[ 665.476735][ T31] kthread+0x411/0x500
[ 665.480795][ T31] ? hungtask_pm_notify+0x50/0x50
[ 665.485816][ T31] ? kthread_blkcg+0xd0/0xd0
[ 665.490399][ T31] ret_from_fork+0x1f/0x30
[ 665.494921][ T31]
[ 665.497977][ T31] Sending NMI from CPU 0 to CPUs 1:
[ 665.503224][ C1] NMI backtrace for cpu 1 skipped: idling at default_idle+0xf/0x20
[ 685.540271][ T31] INFO: task syz.2.17:375 blocked for more than 186 seconds.
[ 685.547780][ T31] Not tainted syzkaller #0
[ 685.552934][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 685.561674][ T31] task:syz.2.17 state:D stack:25824 pid: 375 ppid: 365 flags:0x00004000
[ 685.570958][ T31] Call Trace:
[ 685.574253][ T31]
[ 685.577186][ T31] __schedule+0xb6e/0x14c0
[ 685.581747][ T31] ? release_firmware_map_entry+0x190/0x190
[ 685.587669][ T31] ? __kasan_check_write+0x14/0x20
[ 685.592827][ T31] ? _raw_spin_lock_irq+0x8f/0xe0
[ 685.597875][ T31] ? _raw_spin_lock_irqsave+0x110/0x110
[ 685.603496][ T31] schedule+0x11e/0x1e0
[ 685.607670][ T31] rwsem_down_write_slowpath+0xae5/0x1930
[ 685.613431][ T31] ? rwsem_down_read_slowpath+0x1230/0x1230
[ 685.619348][ T31] ? dput+0x47/0x90
[ 685.623343][ T31] ? kasan_save_stack+0x49/0x60
[ 685.628223][ T31] ? kasan_save_stack+0x3a/0x60
[ 685.633193][ T31] ? __kasan_record_aux_stack+0xd2/0x100
[ 685.638845][ T31] ? call_rcu+0x105/0xfe0
[ 685.643209][ T31] ? __fput+0x610/0x8b0
[ 685.647378][ T31] ? ____fput+0x15/0x20
[ 685.651560][ T31] ? task_work_run+0x101/0x190
[ 685.656336][ T31] ? exit_to_user_mode_loop+0xd0/0xe0
[ 685.661741][ T31] ? rwsem_write_trylock+0x130/0x300
[ 685.667046][ T31] ? clear_nonspinnable+0x60/0x60
[ 685.672122][ T31] ? perf_event_exit_event+0x520/0x520
[ 685.677594][ T31] ? mutex_unlock+0x89/0x220
[ 685.682214][ T31] down_write+0x29/0x30
[ 685.686384][ T31] exit_mmap+0x127/0x860
[ 685.690670][ T31] ? vm_brk+0x30/0x30
[ 685.694663][ T31] ? mutex_unlock+0x89/0x220
[ 685.699252][ T31] ? uprobe_clear_state+0x2c1/0x320
[ 685.704482][ T31] __mmput+0x93/0x320
[ 685.708478][ T31] ? mmput+0x48/0x150
[ 685.712490][ T31] mmput+0x50/0x150
[ 685.716312][ T31] do_exit+0x9d2/0x27a0
[ 685.720491][ T31] ? blkcg_maybe_throttle_current+0x1df/0x9e0
[ 685.726572][ T31] ? put_task_struct+0x90/0x90
[ 685.731576][ T31] ? __blkcg_punt_bio_submit+0x170/0x170
[ 685.737226][ T31] ? ____fput+0x15/0x20
[ 685.741411][ T31] do_group_exit+0x141/0x310
[ 685.746023][ T31] ? debug_smp_processor_id+0x17/0x20
[ 685.751455][ T31] __x64_sys_exit_group+0x3f/0x40
[ 685.756502][ T31] x64_sys_call+0x832/0x9a0
[ 685.761060][ T31] do_syscall_64+0x4c/0xa0
[ 685.765494][ T31] ? clear_bhb_loop+0x50/0xa0
[ 685.770204][ T31] ? clear_bhb_loop+0x50/0xa0
[ 685.774897][ T31] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 685.780820][ T31] RIP: 0033:0x7f19b009aec9
[ 685.785247][ T31] RSP: 002b:00007fffa781e158 EFLAGS: 00000246 ORIG_RAX: 00000000000000e7
[ 685.793685][ T31] RAX: ffffffffffffffda RBX: 0000000000000000 RCX: 00007f19b009aec9
[ 685.801686][ T31] RDX: 0000000000000064 RSI: 0000000000000000 RDI: 0000000000000000
[ 685.809650][ T31] RBP: 0000000000000003 R08: 00000005a781e24f R09: 00007f19b02bd280
[ 685.817776][ T31] R10: 0000000000000001 R11: 0000000000000246 R12: 0000000000000000
[ 685.825776][ T31] R13: 00007f19b02bd280 R14: 0000000000000003 R15: 00007fffa781e210
[ 685.833776][ T31]
[ 685.836804][ T31] INFO: task syz-executor:377 blocked for more than 166 seconds.
[ 685.844532][ T31] Not tainted syzkaller #0
[ 685.849466][ T31] "echo 0 > /proc/sys/kernel/hung_task_timeout_secs" disables this message.
[ 685.858180][ T31] task:syz-executor state:D stack:21760 pid: 377 ppid: 1 flags:0x00004004
[ 685.867414][ T31] Call Trace:
[ 685.870727][ T31]
[ 685.873780][ T31] __schedule+0xb6e/0x14c0
[ 685.878214][ T31] ? release_firmware_map_entry+0x190/0x190
[ 685.884166][ T31] ? __kasan_check_write+0x14/0x20
[ 685.889309][ T31] ? _raw_spin_lock_irq+0x8f/0xe0
[ 685.894379][ T31] ? _raw_spin_lock_irqsave+0x110/0x110
[ 685.899942][ T31] schedule+0x11e/0x1e0
[ 685.904138][ T31] rwsem_down_write_slowpath+0xae5/0x1930
[ 685.909876][ T31] ? rwsem_down_read_slowpath+0x1230/0x1230
[ 685.915923][ T31] ? kasan_set_track+0x5b/0x70
[ 685.920751][ T31] ? kasan_set_free_info+0x23/0x40
[ 685.925892][ T31] ? ____kasan_slab_free+0x125/0x160
[ 685.931224][ T31] ? __kasan_slab_free+0x11/0x20
[ 685.936179][ T31] ? kmem_cache_free+0x100/0x320
[ 685.941144][ T31] ? __mmdrop+0x304/0x410
[ 685.945488][ T31] ? finish_task_switch+0x2bb/0x780
[ 685.950715][ T31] ? schedule+0x11e/0x1e0
[ 685.955060][ T31] ? do_wait+0x6b3/0x9a0
[ 685.959306][ T31] ? kernel_wait4+0x1a5/0x260
[ 685.964006][ T31] ? x64_sys_call+0xec/0x9a0
[ 685.968615][ T31] ? msr_save_cpuid_features+0x70/0xc0
[ 685.974118][ T31] ? entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 685.980220][ T31] ? rwsem_write_trylock+0x130/0x300
[ 685.985505][ T31] ? clear_nonspinnable+0x60/0x60
[ 685.990555][ T31] ? perf_event_exit_event+0x520/0x520
[ 685.996032][ T31] ? mutex_unlock+0x89/0x220
[ 686.000653][ T31] down_write+0x29/0x30
[ 686.004833][ T31] exit_mmap+0x127/0x860
[ 686.009090][ T31] ? vm_brk+0x30/0x30
[ 686.013118][ T31] ? mutex_unlock+0x89/0x220
[ 686.017722][ T31] ? uprobe_clear_state+0x2c1/0x320
[ 686.023008][ T31] __mmput+0x93/0x320
[ 686.027096][ T31] ? mmput+0x48/0x150
[ 686.031113][ T31] mmput+0x50/0x150
[ 686.034935][ T31] do_exit+0x9d2/0x27a0
[ 686.039089][ T31] ? put_task_struct+0x90/0x90
[ 686.043878][ T31] ? _raw_spin_lock_irqsave+0xb0/0x110
[ 686.049400][ T31] ? _raw_spin_lock+0xe0/0xe0
[ 686.054133][ T31] ? __kasan_check_write+0x14/0x20
[ 686.059259][ T31] ? _raw_spin_lock_irq+0x8f/0xe0
[ 686.064377][ T31] do_group_exit+0x141/0x310
[ 686.068985][ T31] ? __kasan_check_write+0x14/0x20
[ 686.074128][ T31] get_signal+0x66a/0x1480
[ 686.078566][ T31] arch_do_signal_or_restart+0xc1/0x10f0
[ 686.084259][ T31] ? kernel_waitid+0x370/0x370
[ 686.089050][ T31] ? rcu_gp_kthread_wake+0x90/0x90
[ 686.094228][ T31] ? get_sigframe_size+0x10/0x10
[ 686.099189][ T31] ? kernel_wait+0x160/0x160
[ 686.103843][ T31] ? ____fput+0x15/0x20
[ 686.108022][ T31] exit_to_user_mode_loop+0xa7/0xe0
[ 686.113273][ T31] exit_to_user_mode_prepare+0x87/0xd0
[ 686.118788][ T31] syscall_exit_to_user_mode+0x1a/0x30
[ 686.124306][ T31] do_syscall_64+0x58/0xa0
[ 686.128786][ T31] ? clear_bhb_loop+0x50/0xa0
[ 686.133525][ T31] ? clear_bhb_loop+0x50/0xa0
[ 686.138221][ T31] entry_SYSCALL_64_after_hwframe+0x66/0xd0
[ 686.144151][ T31] RIP: 0033:0x7f0831027fd3
[ 686.148691][ T31] RSP: 002b:00007fff6d0f83c8 EFLAGS: 00000202 ORIG_RAX: 000000000000003d
[ 686.157199][ T31] RAX: fffffffffffffe00 RBX: 0000000000000002 RCX: 00007f0831027fd3
[ 686.165214][ T31] RDX: 0000000040000000 RSI: 00007fff6d0f840c RDI: 00000000ffffffff
[ 686.173240][ T31] RBP: 00007fff6d0f840c R08: 00000000000001f4 R09: 0000000000000000
[ 686.181242][ T31] R10: 0000000000000000 R11: 0000000000000202 R12: 0000000000000000
[ 686.189207][ T31] R13: 0000555575985470 R14: 000000000007962c R15: 00007fff6d0f8460
[ 686.197213][ T31]
[ 686.200261][ T31] NMI backtrace for cpu 0
[ 686.204577][ T31] CPU: 0 PID: 31 Comm: khungtaskd Not tainted syzkaller #0
[ 686.211802][ T31] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 686.221853][ T31] Call Trace:
[ 686.225204][ T31]
[ 686.228216][ T31] __dump_stack+0x21/0x30
[ 686.232565][ T31] dump_stack_lvl+0xee/0x150
[ 686.237149][ T31] ? show_regs_print_info+0x20/0x20
[ 686.242339][ T31] dump_stack+0x15/0x20
[ 686.246485][ T31] nmi_cpu_backtrace+0x2b4/0x2c0
[ 686.251416][ T31] ? rcu_read_unlock_special+0xab/0x460
[ 686.256961][ T31] ? nmi_trigger_cpumask_backtrace+0x240/0x240
[ 686.263109][ T31] ? __rcu_read_unlock+0xa0/0xa0
[ 686.268053][ T31] ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 686.274115][ T31] ? arch_trigger_cpumask_backtrace+0x20/0x20
[ 686.280172][ T31] nmi_trigger_cpumask_backtrace+0x138/0x240
[ 686.286184][ T31] arch_trigger_cpumask_backtrace+0x10/0x20
[ 686.292074][ T31] watchdog+0xd64/0xea0
[ 686.296227][ T31] ? hungtask_pm_notify+0x50/0x50
[ 686.301247][ T31] ? __kasan_check_read+0x11/0x20
[ 686.306264][ T31] ? __kthread_parkme+0xac/0x200
[ 686.311192][ T31] ? preempt_count_add+0x90/0x1b0
[ 686.316209][ T31] kthread+0x411/0x500
[ 686.320270][ T31] ? hungtask_pm_notify+0x50/0x50
[ 686.325285][ T31] ? kthread_blkcg+0xd0/0xd0
[ 686.329865][ T31] ret_from_fork+0x1f/0x30
[ 686.334270][ T31]
[ 686.337366][ T31] Sending NMI from CPU 0 to CPUs 1:
[ 686.342621][ C1] NMI backtrace for cpu 1
[ 686.342632][ C1] CPU: 1 PID: 199 Comm: kworker/u4:3 Not tainted syzkaller #0
[ 686.342649][ C1] Hardware name: Google Google Compute Engine/Google Compute Engine, BIOS Google 08/18/2025
[ 686.342659][ C1] Workqueue: events_unbound toggle_allocation_gate
[ 686.342682][ C1] RIP: 0010:x2apic_send_IPI+0x73/0xd0
[ 686.342704][ C1] Code: f0 48 c1 e8 03 42 0f b6 04 20 84 c0 75 40 41 0f b7 16 0f ae f0 0f ae e8 83 fb 02 b8 00 04 00 00 0f 45 c3 b9 30 08 00 00 0f 30 <66> 90 5b 41 5c 41 5e 41 5f 5d c3 89 fe 41 89 fe 48 c7 c7 e0 06 6d
[ 686.342719][ C1] RSP: 0018:ffffc90000a377d8 EFLAGS: 00000206
[ 686.342738][ C1] RAX: 00000000000000fb RBX: 00000000000000fb RCX: 0000000000000830
[ 686.342749][ C1] RDX: 0000000000000000 RSI: 00000000000000fb RDI: 0000000000000000
[ 686.342759][ C1] RBP: ffffc90000a377f8 R08: dffffc0000000000 R09: ffffed103ee271d3
[ 686.342772][ C1] R10: ffffed103ee271d3 R11: 1ffff1103ee271d2 R12: dffffc0000000000
[ 686.342785][ C1] R13: ffff8881f7138e90 R14: ffff8881f7021158 R15: ffffffff85e64840
[ 686.342798][ C1] FS: 0000000000000000(0000) GS:ffff8881f7100000(0000) knlGS:0000000000000000
[ 686.342812][ C1] CS: 0010 DS: 0000 ES: 0000 CR0: 0000000080050033
[ 686.342824][ C1] CR2: 00007f7f54075000 CR3: 000000000660f000 CR4: 00000000003506a0
[ 686.342839][ C1] DR0: 0000000000000000 DR1: 0000000000000000 DR2: 0000000000000000
[ 686.342849][ C1] DR3: 0000000000000000 DR6: 00000000fffe0ff0 DR7: 0000000000000400
[ 686.342859][ C1] Call Trace:
[ 686.342864][ C1]
[ 686.342870][ C1] native_send_call_func_single_ipi+0x5e/0x70
[ 686.342889][ C1] send_call_function_single_ipi+0xdd/0x180
[ 686.342909][ C1] smp_call_function_many_cond+0x6cb/0x9f0
[ 686.342929][ C1] ? text_poke_sync+0x30/0x30
[ 686.342946][ C1] ? smp_call_function_many+0x40/0x40
[ 686.342963][ C1] ? __kmalloc_track_caller+0x75/0x2c0
[ 686.342988][ C1] ? text_poke+0x20/0x20
[ 686.343002][ C1] ? preempt_schedule_thunk+0x16/0x18
[ 686.343020][ C1] ? text_poke_sync+0x30/0x30
[ 686.343034][ C1] on_each_cpu_cond_mask+0x43/0x80
[ 686.343053][ C1] text_poke_bp_batch+0x3d4/0x5a0
[ 686.343069][ C1] ? __kmalloc_track_caller+0x75/0x2c0
[ 686.343087][ C1] ? text_poke_loc_init+0x570/0x570
[ 686.343102][ C1] ? __kasan_check_write+0x14/0x20
[ 686.343119][ C1] ? mutex_lock+0x95/0x1a0
[ 686.343134][ C1] ? wait_for_completion_killable_timeout+0x10/0x10
[ 686.343152][ C1] ? text_poke_queue+0xdf/0x180
[ 686.343167][ C1] text_poke_finish+0x1a/0x30
[ 686.343182][ C1] arch_jump_label_transform_apply+0x15/0x30
[ 686.343202][ C1] __jump_label_update+0x37c/0x3a0
[ 686.343218][ C1] jump_label_update+0x39b/0x450
[ 686.343238][ C1] static_key_enable_cpuslocked+0x126/0x240
[ 686.343258][ C1] static_key_enable+0x1a/0x30
[ 686.343276][ C1] toggle_allocation_gate+0xb4/0x410
[ 686.343293][ C1] ? kfence_debugfs_init+0x70/0x70
[ 686.343310][ C1] ? _raw_spin_unlock+0x4d/0x70
[ 686.343326][ C1] ? finish_task_switch+0x16b/0x780
[ 686.343343][ C1] ? __switch_to_asm+0x3a/0x60
[ 686.343359][ C1] ? __schedule+0xb76/0x14c0
[ 686.343375][ C1] process_one_work+0x6be/0xba0
[ 686.343397][ C1] worker_thread+0xa59/0x1200
[ 686.343418][ C1] ? __kthread_parkme+0xac/0x200
[ 686.343435][ C1] kthread+0x411/0x500
[ 686.343449][ C1] ? worker_clr_flags+0x190/0x190
[ 686.343467][ C1] ? kthread_blkcg+0xd0/0xd0
[ 686.343483][ C1] ret_from_fork+0x1f/0x30
[ 686.343501][ C1]